Cisco stamps patches on timestamp flaws

For more information Check out our white paper on managing Cisco network security. Learn more about troubleshooting VPNs.

The vulnerability is caused due to a TCP timestamp option error. The flaws allow a remote user to send a packet with specially crafted TCP timestamp options, ultimately causing a target TCP connection to stall until the TCP connection is reset.

The advisory said knowledge of IP address information of the source and destination of the TCP network connection is required for successful exploitation.

Only systems running VxWorks, a real-time operating system for embedded software and process control applications, are affected.

Systems running VxWorks can be upgraded to Cisco IOS to address this issue; access points running Cisco IOS are not affected.

The Cisco advisory recommends that users apply vendor-provided patches.

Tags: Network Security Monitoring and Analysis,  Troubleshooting Wireless Networks,  WLAN Security,  Wireless Network Security,  VIEW ALL TAGS

Digg This!     StumbleUpon     Del.icio.us

RELATED CONTENT Network Security Monitoring and Analysis Network penetration testing guide Performing a penetration test Penetration testing strategies Penetration testing methodology and standards Types of penetration tests Network security forecast 2010: Startups cash out, uber-devices step up Mobile computing security concerns lead to more IPS, SSL VPN spending Application-specific network intrusion detection systems emerge Anomaly-based intrusion protection configuration and installation How can I calculate perimeter firewall throughput? Troubleshooting Wireless Networks Integrating wired and wireless network management Cisco aims for jitter-free video over wireless LAN with latest release Why is the 802.11g Wi-Fi throughput speed on my smartphone slow? How does rain affect wireless network data transfer? How can I increase throughput on my wireless mesh network? University tackles large-scale 802.11n wireless network management Why is my network adapter not working after a Vista Business upgrade? Meru reinvents wireless LAN troubleshooting and management APs drop connection in WLAN configured as a wireless mesh network How to plan for 802.11n wireless LAN upgrades Troubleshooting Wireless Networks Research WLAN Security Best of 2009: Computer networking advice Does war driving enhance the security of wireless networks? How can I access my secured wireless network without the security key? Can a network's IP address be stolen for the use of criminal activity? Where can I find a wire driver that unblocks recognized passwords? Will using a VPN protect me against fake wireless hotspots? Fluke gets WLAN design, management, security cred with AirMagnet Is WPA2 secure enough for a commercial business wireless network? Health center cut cost securing wireless network edge with Aerohive Wi-Fi RTLS for WLAN management, location-based security, asset tracking

RELATED GLOSSARY TERMS Terms from Whatis.com − the technology online dictionary deep packet inspection (DPI)  (SearchNetworking.com) FCAPS  (SearchNetworking.com) Nessus  (SearchNetworking.com) netstat  (SearchNetworking.com) port mirroring  (SearchNetworking.com)

RELATED RESOURCES 2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems Search Bitpipe.com for the latest white papers and business webcasts Whatis.com, the online computer dictionary