Cisco IOS Patch for TCP Flaw Released

Cisco (NASDAQ:CSCO) has just released a critical patch out for its IOS operating system fixing a TCP flaw that could trigger a Denial of Service (DoS) condition.

“By manipulating the state of a TCP connection, an attacker could force the TCP connection to remain in a long-lived state, possibly indefinitely,” Cisco’s warns in its advisory. “If enough TCP connections are forced into a long-lived or indefinite state, resources on a system under attack may be consumed, preventing new TCP connections from being accepted.”

In other words, a flaw in TCP could have enabled a DoS attack.  Have you patched your IOS today ?

- I think this is just another reason to use vyatta or PFSense.