HomesecurityCisco warns of new zero-day vulnerabilities

Cisco warns of new zero-day vulnerabilities

Cisco on Saturday warned of a new zero-day vulnerability affecting the Internet operating system (IOS) shipped with networking equipment.

The vulnerability, identified as CVE-2020-3566, affects the Distance Vector Multicast Routing Protocol (DVMRP) feature shipped with the IOS XR version of the operating system.


This version of the operating system is usually installed on routers used on data centers, as the company states on its website.

Cisco says the DVMRP feature contains an error that allows an unauthorized, remote intruder to run out of process memory and crash other procedures performed in device.

Exploit attempts were discovered last week

Cisco says it last week discovered intruders exploiting this bug. The attacks were found during a case that the company's support team was called to investigate.

"On August 28, 2020, the Cisco Product Safety Response Team (PSIRT) identified an attempt to exploit this vulnerability," Cisco said.

The company said it is currently working on developing updates software for IOS XR.

The patches will be released in a few days. Meanwhile, Cisco has provided several solutions and mitigations to its customers in order to prevent any attempt at exploitation.

Cisco Security Advice also includes additional incident response instructions for Companies - how to scan their logs and see if they have been attacked by hackers who used this IOS zero-day.

It is not clear how intruders use this error. They can use it to interrupt other processes on the router, such as mechanisms security or to access device. However, this is only a theory and companies should thoroughly check their logs after detecting any signs of exploitation of CVE-2020-3566.

Teo Ehc
Be the limited edition.