EEVblog Electronics Community Forum

Products => Computers => Security => Topic started by: madires on August 04, 2021, 12:12:59 pm

Title: INFRA:HALT - vulnerabilities in NicheStack (TCP/IP stack)
Post by: madires on August 04, 2021, 12:12:59 pm

14 critical vulnerabilities found in NicheStack (TCP/IP stack) and 200+ vendors effected, a lot of PLCs.
https://www.forescout.com/research-labs/infra-halt/ (https://www.forescout.com/research-labs/infra-halt/)

Title: Re: INFRA:HALT - vulnerabilities in NicheStack (TCP/IP stack)
Post by: NiHaoMike on August 06, 2021, 03:25:52 am

Yet another example of security through obscurity failing in the long run.

Title: Re: INFRA:HALT - vulnerabilities in NicheStack (TCP/IP stack)
Post by: mrflibble on September 08, 2021, 08:35:09 pm

Quote from: madires on August 04, 2021, 12:12:59 pm

14 critical vulnerabilities found in NicheStack (TCP/IP stack) and 200+ vendors effected, a lot of PLCs.
https://www.forescout.com/research-labs/infra-halt/ (https://www.forescout.com/research-labs/infra-halt/)

Just for the fun of it gave the research report a quick scan. Buffer overflow and lack of input validation is still pretty popular, tsk tsk. At least this one is a bit more amusing: "Whenever an unknown HTTP request is received, a panic is invoked."

Reminds me of Novell servers in the previous millennium, where you could crash the entire server by a simple telnet to port 25.