[ISN] Alcatel Working with CERT to Solve Security Vulnerabilities

From: InfoSec News (isnat_private)
Date: Thu Apr 12 2001 - 19:06:01 PDT

  • Next message: InfoSec News: "[ISN] War driving by the Bay"

    By Thor Olavsrud
    April 12, 2001
    In response to security issues raised by the San Diego Supercomputer
    Center Monday regarding certain Alcatel ADSL modems, the French
    communications equipment maker said Thursday that it is aware of
    vulnerabilities and is working with the Computer Emergency Response
    Team (CERT) Coordination Center to resolve the problems.
    Alcatel also said that it is not aware of any instance where a Speed
    Touch Home ADSL modem user's device has been compromised due to the
    reported vulnerabilities.
    "It is Alcatel's policy to provide its customers with the most
    advanced and secure products," the company said in a statement
    Thursday. "Therefore, Alcatel has done extensive testing of its ADSL
    modem equipment based on the recently made security advisories by CERT
    and the San Diego Supercomputer Center (SDSC).
    "The security issues raised are actually well known general
    vulnerability problems when connected to the Internet, regardless of
    the type of software upgradeable access equipment being used (cable or
    DSL modems).
    The company also said that according to recent tests, the primary
    vulnerability discussed in the advisories don't apply to the majority
    of mainstream operating systems used by residential and small business
    subscribers, including Windows 95, 98, 98se, ME and typical
    installations of NT4.0 Workstation, 2000 Professional and the latest
    commercial releases of Linux.
    Alcatel also noted that any PC, in any configuration (home or in a
    local area network), is open to attacks by hackers if not behind a
    firewall. The company strongly recommended the use of firewalls as a
    general practice, especially for Internet users with "always on"
    connections like cable or DSL.
    ISN is hosted by SecurityFocus.com
    To unsubscribe email LISTSERVat_private with a message body of

    This archive was generated by hypermail 2b30 : Sun Apr 15 2001 - 00:47:00 PDT