[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[orca-users:04211] 【対策】シスコ社製ルーターを使用中の施設へ
- To: orca-users@xxxxxxxxxxxxxx
- Subject: [orca-users:04211] 【対策】シスコ社製ルーターを使用中の施設へ
- From: 北岡 有喜 <ykitaoka@xxxxxxxxxxxxxxxxxxxxx>
- Date: Tue, 22 Jul 2003 00:29:58 +0900
北岡有喜@国立京都病院医療情報部です。
[orca-users:04208] 【重要】シスコ社製ルーターを使用中の施設へ
で情報提供しました内容に関する対策についての情報が参りました
ので、再度情報提供し足します。
Los Nettos will be upgrading IOS software on all their Cisco routers
and switches over the next few days. The reloads will take place
during their normal maintenance window of 4AM to 6AM.
A public exploit was posted for this bug Friday, making it easy for
script kiddies all over the world to bring your unupgraded Cisco
routers to a screeching halt. See CERT Advisory CA-2003-17
<http://www.cert.org/advisories/CA-2003-17.html>.
> 皆さん、こんばんは!
> 北岡有喜@国立京都病院医療情報部です。
> UCLAの共同研究者からの情報提供です。
>
> 下記の様に、シスコ社製ルータが攻撃を受けた場合、容易に機能が停止
> してしまうようです。
>
> 同社製ルーターのご使用の有無の確認と使用の場合は敷設業者を通じて
> の対策を至急、宜しくお願いいたします。
>
> > A few hours hours ago, Cisco and CERT announced a denial-of-service
> > attack on Cisco routers. Apparently an attacker can easily shut down
> > external Cisco routers. See CERT advisory CA-2003-15
> > http://www.cert.org/advisories/CA-2003-15.html
> > and Cisco Security Advisory 44020
> > http://www.cisco.com/warp/public/707/cisco-sa-20030717-blocked.shtml.
> >
> > We should update our affected Cisco routers as soon as is practical.
> > Of course the routers that are on the Internet are the most source of
> worry.
> >
> > Unfortunately, Cisco says you have to jump through some hoops to get
> > the fixed versions; apparently you can't just download them off the
> > Internet. Fory, can you please do that? The details are in the Cisco
>
> > announcement, but here's what I figure:
> >
> > MMM is currently running IOS 12.1(10); Cisco says it should be
> > upgraded to at least IOS 12.1(19).
> >
> > YYY and ZZZ are less important, since they're not on
> > the Internet. They are running IOS 12.1(10) and 11.2(26a),
> > respectively. The former is like MMM; Cisco says that the latter
> > should be upgraded to at least IOS 11.2(26e).
> >
> > Also, if we're responsible or partly-responsible for any Cisco routers
>
> > in Japan, can you please contact whoever's in charge of them and pass
> > those URLs on to them?
> >
> > Thanks.
_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/
京都大学医学博士
北 岡 有 喜(きたおか ゆうき)
mailto:ykitaoka@xxxxxxxxxxxxxxxxxxxxx
臨床研修審査官(厚生労働省近畿厚生局総務課内)←月水金
Tel: 06-6942-2284(直通) Fax: 06-6946-1500
mailto:kitaoka-yuuki@xxxxxxxxxx
http://www.hosp.go.jp/~kinki
国立京都病院 医療情報部長/産科医長 ←火木
Tel: 075-645-8401(内線7232) Fax: 075-646-3127
mailto:ykitaoka@xxxxxxxxxxxxxxxxxxx
http://www.hosp.go.jp/~kyotolan
http://w3.hosp.go.jp/~hospnet (HOSPnet研究会)
_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/