News and Trends
SHARE
Facebook X Pinterest WhatsApp

U.S. Government Calls Cisco, Juniper Gear Vulnerable to Hackers

(Reuters) – The U.S. government has identified flaws in equipment from four companies, including Cisco Systems Inc (CSCO.O), that hackers can exploit to break into corporate computer networks. The Department of Homeland Security’s U.S. Computer Emergency Readiness Team, US-CERT, said on its website on Wednesday that the warning applies to certain networking products from Cisco, […]

Written By
thumbnail Channel Insider Staff
Channel Insider Staff
Dec 3, 2009
Channel Insider content and product recommendations are editorially independent. We may make money when you click on links to our partners. Learn More

(Reuters) – The U.S. government has identified flaws in equipment from four companies, including Cisco Systems Inc (CSCO.O), that hackers can exploit to break into corporate computer networks.

The Department of Homeland Security’s U.S. Computer Emergency Readiness Team, US-CERT, said on its website on Wednesday that the warning applies to certain networking products from Cisco, Juniper Networks Inc (JNPR.K), SonicWall Inc (SNWL.O) and SafeNet Inc.

The flaw applies to equipment with technology known as SSL VPN that companies use to set up secure communications systems for safely accessing internal computer systems over the Internet.

It affects VPN systems run directly through a Web browser, rather than through software installed on a user’s PC, which is more widely used.

Hackers who exploit the vulnerability could gain broad access to corporate networks, then steal confidential data, install malicious software or turn PCs into spam servers.

US-CERT’s posting said the manufacturers have yet to develop a remedy for the problem, which government officials brought to their attention on September 24.

In the meantime, US-CERT researchers have developed three "workarounds" that they said minimize, but do not eliminate, the risk of an attack.

Barry Greene, head of Juniper’s security response team, said his company has known of the vulnerability for several years and has urged customers to run the systems with workarounds in place.

"Our customers who follow the best common practice significantly reduce the risk — to the point where they don’t need to worry about it," he said.

SafeNet spokeswoman Donna St. Germain said her company had already devised a way to completely eliminate the risk and advised customers how to configure their equipment to do so.

The government agency said that SSL VPN products from other companies could potentially be at risk, though it has not tested them.

A spokesperson for Cisco said he could not immediately comment on the matter. SonicWall did not respond to a request for comment.

(Reporting by Jim Finkle; Additional reporting by Ritsuko Ando; Editing by Richard Chang)
 


thumbnail Channel Insider Staff

Recommended for you...

thumbnail Scale Computing Makes Strategic Updates to HyperCore Solution
Infrastructure
Scale Computing Makes Strategic Updates to HyperCore Solution
Jordan Smith
Sep 17, 2025
thumbnail Druva Launches Metadata Graphing & New Agentic AI Solutions
AI
Druva Launches Metadata Graphing & New Agentic AI Solutions
Jordan Smith
Sep 17, 2025
thumbnail SonicWall’s Michael Crean on State of Managed Security
Security
SonicWall’s Michael Crean on State of Managed Security
Victoria Durgin
Sep 17, 2025
thumbnail Gigamon Unveils Agentic AI App to Boost IT Productivity
AI
Gigamon Unveils Agentic AI App to Boost IT Productivity
Luis Millares
Sep 16, 2025
Channel Insider Logo

Channel Insider combines news and technology recommendations to keep channel partners, value-added resellers, IT solution providers, MSPs, and SaaS providers informed on the changing IT landscape. These resources provide product comparisons, in-depth analysis of vendors, and interviews with subject matter experts to provide vendors with critical information for their operations.

facebook
linkedin
youtube
rss
spotify
x

Company

About us Contact us Advertise with us

Categories

Channel Business Security AI Infrastructure Lists & Awards

Property of TechnologyAdvice. © 2025 TechnologyAdvice. All Rights Reserved

Advertiser Disclosure: Some of the products that appear on this site are from companies from which TechnologyAdvice receives compensation. This compensation may impact how and where products appear on this site including, for example, the order in which they appear. TechnologyAdvice does not include all companies or all types of products available in the marketplace.

Terms of Service Privacy Policy California - Do Not Sell My Information