Cisco has issued a pair of updates today patching two remote denial of service vulnerabilities affecting certain devices running its Internetwork Operating System (IOS). The vulnerabilities are limited to kit running Cisco IOS software with support for four-octet Autonomous Systems number space (AKA: 4-byte AS number) and Border …
It's pretty easy to say one should upgrade to the non-flawed IOS, but it's much tougher to actually do it...especially in a large enterprise. IOS roll-out to a network of a few thousand, or even a few hundred, devices might take months to complete. And the roll-out wouldn't start until after the QA team shook it out for a while in the lab. Let's face it, IOS upgrades to plug a relatively esoteric security exposure fall way down the priority list of most companies. They've got far too many Microsoft patches to apply to the desktops and servers without regularly disrupting the networks in between. Live with the IOS bugs and holes until there's a compelling (feature) reason to upgrade.
- Updated Zucker punched: Google gobbles Facebook-wooed Titan Aerospace
- Elon Musk's LEAKY THRUSTER gas stalls Space Station supply run
- Windows 8.1, which you probably haven't upgraded to yet, ALREADY OBSOLETE
- Mounties always get their man: Heartbleed 'hacker', 19, CUFFED
- Android engineer: We DIDN'T copy Apple OR follow Samsung's orders