ISS reports Snort vulnerability
A vulnerability in Snort open-source intrusion detection system (IDS) software could allow an attacker to crash the Snort sensor or gain control of the host device on which the sensor runs. A buffer overflow vulnerability was found in code used by Snort to detect an attack technique called RPC (remote procedure call) fragmentation. This can be used to evade intrusion detection systems, according to an advisory reported by security vendor Internet Security Systems (ISS). It claimed Snort does not properly check the size of the RPC fragments it is processing against the available space in the pre-processing buffer. Sending data to the buffer in excess of its capacity causes the buffer to overflow and this might cause the Snort sensor to crash or enable an attacker to place and execute malicious code on the compromised host.
Dower NetStar’s new MD
IP network solutions provider NetStar has appointed Craig Dower as the new managing director of its Australian operation. He joins the company after a two-year stint as president and CEO of Cards etc, a Sydney-based smart card software specialist, where he will continue to serve as a non-executive director. Prior to that, he was Asia-Pacific director of sales and marketing for the professional services arm of Lucent Technologies. Dower has also held executive positions with EDS Australia and law firm Mallesons Stephen Jaques.
Switch links environments
In a move aimed at unifying factory floor networks with those in corporate back offices, Cisco Systems is unveiling switches based on IP and Ethernet in the US. The Catalyst 2955 series is designed for use in factories and in utility, transportation and military settings where temperatures, humidity, dust and vibrations are more extreme than in regular business environments. The devices are about one-third as big as Cisco’s regular switches and are priced from $US3400 to $US5840.