Wisconsin Uni page describes Netgear "flawed routers"

Internet Time Server flooded with multiple requests

By INQUIRER staff

Sun Aug 24 2003, 13:39

A PAGE AT the University of Wisconsin that was placed there just a few days back, appears to describe problems which may be related to Netgear products accessing public NTP pages.

According to the page, Wisconsin was hit by a flood of 100s of thousands of packets per second, not caused by a malicious denial of service attack, but by what the page claims is a "serious flaw" in the design of low cost Internet products.

The page says that Wisconsin University is now engaged in a conversation with Netgear consisting of 15 different individuals from vendor and from the academy.

The problem, it claims, is that there's a flawed Netgear SNTP client implementation. Netgear is also producing firmware that doesn't have such problems, it appears.

The author of the page claims that 500,000 unique Netgear sources queried the Wisconsin time server in just one day, while Netgear said that 707,147 of its products that might be affected by the problem had been manufactured, the page claims.

There's more here.

There's confirmation of some of these problems at this Netgear support page for the RP614, here, which points out that some products use public NTP sources that can cause "spikes", and gives a firmware fix for a series of products. µ

4chan rides out a SYN flood attack on its website and forums No word on retribution, yet Wednesday, 16 November 2011, 11:37 AM Read more	Newly patched Safari flaws pose serious risks A proof-of-concept remote code execution exploit is available Thursday, 13 October 2011, 11:26 AM Read more
Wordpress blogs are at risk Hole found in a popular third-party script Wednesday, 3 August 2011, 15:11 PM Read more	The rise, fall and legacy of the hacker group Lulzsec How it all started and where it all went wrong Monday, 4 July 2011, 15:53 PM Read more
Siemens patches industrial controller flaws, but weaknesses remain There's still work to do Monday, 13 June 2011, 16:58 PM Read more	Hilary Clinton says our web regs good, your web regs bad What is good for the goose is not good for any ganders, warns US Secretary of State Wednesday, 16 February 2011, 14:35 PM Read more

Comments

There are no comments submitted yet. Do you have an interesting opinion? Then be the first to post a comment.

INQ White papers

Databases

Network management

Security

Service oriented architecture

Storage

INQ Jobs

Senior PHP / Magento Devel

Roc Search / Senior PHP Dev...

INQ Poll

Authorities in several countries raided Megaupload recently, shut down all of its services, seized hundreds of servers and arrested several of its executives on criminal charges.

Do you think the move was justified?

Yes, companies should suffer an immediate death penalty upon being accused of copyright infringement.

Yes, the coppers said the company was breaking the law so it must be guilty.

No, the company and the people accused are innocent until proven guilty.

No, the company had millions of customers who have been harmed by having access to their data files cut off.

I don't care, I never used Megaupload anyway.

View other polls

© Incisive Media Investments Limited 2012, Published by Incisive Financial Publishing Limited, Haymarket House, 28-29 Haymarket, London SW1Y 4RX, are companies registered in England and Wales with company registration numbers 04252091 & 04252093

SEARCH :

Site Credentials:

Business & Technology websites:

Business research resources:

Products:

Investment Market IT websites:

Find out what you are worth:

Salary Calculator

Search for a job:

Recruitment Agency A-Z Directory

Accreditations:

Digital Publisher of the Year 2010

Wisconsin Uni page describes Netgear "flawed routers"

Share this:

RIM Playbook OS 2.0 and Blackberry 7.1 video demo

Nokia Lumia 710 video review