NCS 6000 and ASR 5000 routers need some lovin'
Cisco has patched two vulnerabilities, including a remote denial of service bug in its Network Convergence System routers. Attackers can send packets to TCP listening ports running SSH, secure copy protocol, and secure FTP that can overwhelm NCS 6000 routers and cause processors to reload. The Borg rates the vulnerability (CVE-2016-1426) as highly critical on account of it offering a method to remotely disrupt routers in certain configurations. "The vulnerability is due to improper management of...