Must Read: Sorry, but bringing back the Start menu won't help Windows 8

Topic: Security

Cisco warranty CDs send users to malicious web site

Summary: Cisco warns that some warranty CD-ROMs contain a malicious surprise.

Ryan Naraine

By for Zero Day |

Cisco has shipped warranty CDs with links to a third-party website known to be a malware repository.

In an advisory, the switching and routing company said the infected CD-ROMs were shipped between the period of December 2010 until August 2011.

"When the CD is opened with a web browser, it automatically and without warning accesses this third-party website. Additionally, on computers where the operating system is configured to automatically open inserted media, the computer's default web browser will access the third-party site when the CD is inserted, without requiring any further action by the user," Cisco warned.

Cisco downplayed the direct risk to end users:follow Ryan Naraine on twitter

To the best of our knowledge, starting from December 2010 until the time of this document's publication on August 3, 2011, customers were never in a position to have their computer compromised by using the CDs provided by Cisco. Additionally, the third-party site in question is currently inactive as a malware repository, so customers are not in immediate danger of having their computers compromised. However, if this third-party web site would become active as a malware repository again, there is a potential that users could infect their operating system by opening the CD with their web browser.

The advisory contains a list of CDs affected by this incident.

Topics: Security, Cisco, Malware

Kick off your day with ZDNet's daily email newsletter. It's the freshest tech news and opinion, served hot. Get it.

Talkback

8 comments
Log in or register to join the discussion

  • RE: Cisco warranty CDs send users to malicious web site

    I have no CDs from Cisco however yes there are companies, you purchase program from them and are loaded with advertisement and are install un to you computer then you need spend days cleaning crap off which it should be illegal!!!
    Tony4
    Reply Vote

    • RE: Cisco warranty CDs send users to malicious web site

      @Tony4 Could you repeat that in English?
      frizzllefry
      Reply Vote

  • RE: Cisco warranty CDs send users to malicious web site

    Questions that came to mind...
    I'm not a big corp. and have never bought Cisco software but are you saying that the Warranty comes on a CD and not in written form, like every other warranty I've ever seen? What is it, someone standing there reading the warranty? I don't understand this???
    Secondly, it sure would be interesting to know what company(s) were involved in producing the CDs and what country(s) they are located in....
    To me, it seems totally incomprehensible that a giant like Cisco, in this day and age of the 'cyberwar era', has such poor quality control that they were ever distributed in the first place...(some heads should roll) and not to find out about it until 9 mos. later after they were released...geez...that's pretty bad.
    scudrunner
    Reply Vote

    • RE: Cisco warranty CDs send users to malicious web site

      @scudrunner
      Yes warranty info, most likely the CD's created by a third party. If the third party did not catch most likely a customer reported the issue.
      daikon
      Reply Vote

  • RE: Cisco warranty CDs send users to malicious web site

    The author failed to research the most obvious question. HOW did the malware get on to the disks (or isn't Cisco saying)?
    omb00900@...
    Reply Vote

  • Design safety failures take forever to get patched

    In theory, I'd hope by now that systems no longer automatically ran code (or followed links) from inserted disks. In practice, XP may keep this alive?

    When code is exploited to do something unintended, the defect tends to get patched. But when an unsafe design poses similar risks, it's usually not fixed because it "works as designed". It can take years of mass exploits, including destructive payloads, before it's fixed.

    Examples abound; auto-running macros in "documents", auto-running scripts in HTML "message text", auto-running optical and USB storage, hiding the only unspoofable indication of a file's type, etc.

    Some of these persist to this day.
    cquirke
    Reply Vote

  • Par for the Ciscourse.

    Given the quality control of the last (and I mean last both as in "I'll never buy another Cisco product, too) "Cisco" router I purchased - which turned out to be a Linksys work of art in a shiny white case with a darling Cisco logo, a fatal bug in the BIOS, and no available support - learning that their exemplary quality control extends to yet another facet of their business surprises me not at all.

    And the downplaying of the issue reprinted above is worthy of any politician.

    When one aspect of a business is reminiscent of a troupe of monkeys interacting with a football it's hardly surprising when you learn that others are too.
    ghastly
    Reply Vote

  • RE: Cisco warranty CDs send users to malicious web site

    m2 pvp serverlar tan??t??m?? <a href="http://www.metin2pvpserverlar.com" title="pvp serverler" target="_blank">pvp serverler</a> mt2 private servers <a href="http://www.metin2pvpserverlar.com" title="metin2 pvp serverler" target="_blank">metin2 pvp serverler</a> metin2 games <a href="http://www.metin2pvpserverlar.com" title="metin2 pvp serverlar" target="_blank">metin2 pvp serverlar</a>
    mt2 pvp servers <a href="http://www.metin2pvpserver.net" title="pvp" target="_blank">pvp</a> metin2 online games <a href="http://www.metin2pvpserver.net" title="mt2 pvp" target="_blank">mt2 pvp</a> m2 games servers <a href="http://www.metin2pvpserver.net" title="metin2" target="_blank">metin2</a>
    private servers <a href="http://www.metin2turkiye.net" title="mt2" target="_blank">mt2</a> private server <a href="http://www.metin2turkiye.net" title="m2" target="_blank">m2</a> private online game <a href="http://www.metin2turkiye.net" title="metin 2" target="_blank">metin 2</a>
    g??zel s??zler roms <a href="http://www.tuztanem.com" title="guzel sozler" target="_blank">guzel sozler</a>
    face 100 ifadeleri yemek tarifleri <a href="http://www.faceara.com" title="yemek tarifleri" target="_blank">yemek tarifleri</a> face guncel news <a href="http://www.faceara.com" title="face" target="_blank">face</a> t He Facebook land <a href="http://www.faceara.com" title="facebook" target="_blank">facebook</a>
    games hiller <a href="http://www.metin2oyunu.org/hileler" title="metin2 hile" target="_blank">metin2 hile</a> games dowland <a href="http://www.metin2oyunu.org/indir" title="metin2 indir" target="_blank">metin2 indir</a>

    <a href="http://www.makaracilar.org" title="chat" target="_blank">chat</a>
    <a href="http://www.manolyam.net" title="mynet" target="_blank">mynet</a>
    <a href="http://www.sexmuhabbet.net" title="sex" target="_blank">sex</a>
    <a href="http://www.sexmuhabbet.net" title="sex hikayeleri" target="_blank">sex hikayeleri</a>
    sirnem
    Reply Vote
CNET Join | Log In | Privacy | Cookies Close