Re: (ASCEND) [rootshell] Security Bulletin #16 (fwd)

To: Andrew Cutler <andrewc@xtra.co.nz>
Subject: Re: (ASCEND) [rootshell] Security Bulletin #16 (fwd)
From: Joe Shaw <jshaw@insync.net>
Date: Tue, 17 Mar 1998 09:53:06 -0600 (CST)
cc: ascend-users@bungi.com
In-Reply-To: <350E5081.134EF960@xtra.co.nz>
Sender: owner-ascend-users@max.bungi.com

No.  The Rootshell advisory (at least the one forwarded here) was 2 bugs
in one. The first 2 pieces of code were exploits for the Java Configurator
bug (UDP port 9) and the last piece was an advisory against the default
community strings that are left active in the SNMP setup of Ascend
Maxen/Pipeline units.

You do NOT need to know the SNMP community strings to use the Ascend
Killer software against a piece of Ascend gear.  The SNMP "bug" (I
wouldn't call it that, as we always change the default SNMP read and write
community strings) warns against leaving the strings the default because
malicious users could download and/or change your running config on any of
your Ascend hardware.

Joe Shaw - jshaw@insync.net
NetAdmin - Insync Internet Services

On Tue, 17 Mar 1998, Andrew Cutler wrote:

> Correct me if I read this wrong but the attacker has to guess the SNMP
> community name, so unless it's left as default it's going to be pretty hard
> to find. IMHO if you leave a system open to the internet with defaults you're
> begging for trouble.
> 
> Cheers
> 
> bcurnow wrote:
> 
> > The ascend kill works, and is easy to filter across networks, but it
> > doesn't look like the Ascend itself can be protected.  The built in filter
> > code doesn't seem to process the packet before the damage is done.
> >
> > I suppose this means a whole bunch of dial-up MAXs are going to be diving
> > for the next 24 hours or so.
> >
> > ----------------- Brian  Curnow ----------------
> >
> > ++ Ascend Users Mailing List ++
> > To unsubscribe: send unsubscribe to ascend-users-request@bungi.com
> > To get FAQ'd:   <http://www.nealis.net/ascend/faq>
> 
> 
> 
> ++ Ascend Users Mailing List ++
> To unsubscribe:	send unsubscribe to ascend-users-request@bungi.com
> To get FAQ'd:	<http://www.nealis.net/ascend/faq>
> 

++ Ascend Users Mailing List ++
To unsubscribe:	send unsubscribe to ascend-users-request@bungi.com
To get FAQ'd:	<http://www.nealis.net/ascend/faq>

References:

Re: (ASCEND) [rootshell] Security Bulletin #16 (fwd)

From: Andrew Cutler <andrewc@xtra.co.nz>

Prev by Date: Re: (ASCEND) Malfunction :(
Next by Date: Re: (ASCEND) ISDN w/o PRI?
Prev by thread: Re: (ASCEND) [rootshell] Security Bulletin #16 (fwd)
Next by thread: Re: (ASCEND) [rootshell] Security Bulletin #16 (fwd)
Index(es):
- Main
- Thread