NEOHAPSIS - Peace of Mind Through Integrity and Insight

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > InfoSec News> 2001-q2

[ISN] Alcatel Working with CERT to Solve Security Vulnerabilities

From: InfoSec News (isnC4I.ORG)
Date: Thu Apr 12 2001 - 21:06:01 CDT

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

http://www.internetnews.com/prod-news/article/0,,9_741871,00.html

By Thor Olavsrud
April 12, 2001

In response to security issues raised by the San Diego Supercomputer
Center Monday regarding certain Alcatel ADSL modems, the French
communications equipment maker said Thursday that it is aware of
vulnerabilities and is working with the Computer Emergency Response
Team (CERT) Coordination Center to resolve the problems.

Alcatel also said that it is not aware of any instance where a Speed
Touch Home ADSL modem user's device has been compromised due to the
reported vulnerabilities.

"It is Alcatel's policy to provide its customers with the most
advanced and secure products," the company said in a statement
Thursday. "Therefore, Alcatel has done extensive testing of its ADSL
modem equipment based on the recently made security advisories by CERT
and the San Diego Supercomputer Center (SDSC).

"The security issues raised are actually well known general
vulnerability problems when connected to the Internet, regardless of
the type of software upgradeable access equipment being used (cable or
DSL modems).

The company also said that according to recent tests, the primary
vulnerability discussed in the advisories don't apply to the majority
of mainstream operating systems used by residential and small business
subscribers, including Windows 95, 98, 98se, ME and typical
installations of NT4.0 Workstation, 2000 Professional and the latest
commercial releases of Linux.

Alcatel also noted that any PC, in any configuration (home or in a
local area network), is open to attacks by hackers if not behind a
firewall. The company strongly recommended the use of firewalls as a
general practice, especially for Internet users with "always on"
connections like cable or DSL.

ISN is hosted by SecurityFocus.com
---
To unsubscribe email LISTSERVSecurityFocus.com with a message body of
"SIGNOFF ISN".

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]