Who's Online? |
There are currently, 12 guest(s) and 0 member(s) that are online.
You are Anonymous user. You can register for free by clicking here |
|
Quotable Quotes™ |
"Woooo, I got self-validation from some random internet whore! Today just keeps getting better and better." --Lester_de_Valois |
|
|
Cisco Switch vulnerability |
Posted on Tuesday, April 29 @ 12:31:58 BST by Beldurin
|
chazz writes: I know we have some heavy net types on here, so when I saw this article I thought I had better post it here.
A vulnerability has been reported for Cisco Catalyst switches that may result in unauthorized access to the enable level.
An attacker who is able to obtain command line access to a vulnerable switch is able to access 'enable' mode without a password.
Components Affected
Cisco Catalyst 4000 7.5 (1)
Cisco Catalyst 6000 7.5 (1)
Cisco Catalyst 6500 7.5 (1)
This vulnerability does not affect Catalyst 4000, 6000 and 6500 switches running CatOS 7.6(1). Affected users are advised to contact Cisco to obtain fixes.
The vulnerability exists due to the way the 'enable' mode is accessed through the switch.
Recommendations
Block external access at the network boundary, unless service is required by external parties.
Configure the affected switch so that telnet/ssh connections are permitted from trusted hosts and networks only.
Permit privileged access for trusted individuals only.
Ensure that only trustworthy individuals are capable of connecting to vulnerable Catalyst Switches.
Implement multiple redundant layers of security.
The use of AAA configurations will prevent exploitation of this vulnerability. Ensure that AAA configurations are used and are not configured for fallback to local authentication.
This vulnerability is given the Cisco BugID of CSCea42030.
References
Source: Cisco Security Advisory: Cisco Catalyst Enable Password Bypass Vulnerability
URL: http://www.cisco.com/warp/public/707/cisco-sa-20030424-catos.shtml
|
|
|
| |
Article Rating |
Average Score: 0 Votes: 0
|
|
|
"Login" | Login/Create an Account | 16 comments |
| The comments are owned by the poster. We aren't responsible for their content. |
|
|
[ No Comments Allowed for Anonymous, please register ]
Re: Cisco Switch vulnerability (Score: 1) by CNCJake on Wednesday, April 30 @ 18:41:42 BST (User Info | Send a Message) | Yet again, people freak out about a problem they can prevent themselves by using their brain. ACL for management subnet on line vty 04!!!!!!!!!! |
[ No Comments Allowed for Anonymous, please register ]
dale (Score: 1) by vacheron on Wednesday, October 13 @ 08:06:21 BST (User Info | Send a Message) | of the new Pierre DeRoche Shiny Pebbles Waves Watch is finished by a black strap crafted from alligator leather fake watches imitating dots replica rolex The strap offers an elegant touch being connected smoothly with the case through steel lugs that are almost not visible Pierre DeRoche Haute Horlogerie manufacturer of some of the most avant-garde watches on the planet today audemars piguet watches does not content themselves with producing watches of great beauty and complex technology breitling They constantly seek to appeal to those people who might never consider such a timepiece for daily wear which includes most of the population under age twenty-five Hence the Split Rock line from Pie rado watches |
[ No Comments Allowed for Anonymous, please register ]
[ No Comments Allowed for Anonymous, please register ]
[ No Comments Allowed for Anonymous, please register ]
Luis (Score: 1) by vacheron on Monday, November 01 @ 18:50:56 GMT (User Info | Send a Message) | s Aerospaces or occasionally B or Navitimers Ever wonder how these custom dialed versions appear Its nothing special Breitling does not represent these organizations or companies in any way they are simply making custom dials for them at a cost Breitlings does custom dials for customers if they will make at least of them Explorer watch fake watches tissot and the cost of the custom dial is added onto the overall price This can be done through a dealer but the minimum of is very strict lady cartier watch rado replica Usually these editions go for slightly more than the standard mod |
[ No Comments Allowed for Anonymous, please register ]
[ No Comments Allowed for Anonymous, please register ]
Re: Cisco Switch vulnerability (Score: 1) by chengwu0008 on Saturday, August 13 @ 08:31:13 BST (User Info | Send a Message) | Pursuing for [url=http://www.thomasaboukstore.com/]thomas sabo[/url] cool, unique, stylish and innovative. Whether it is [url=http://www.thomasaboukstore.com/]thomas sabo uk[/url] or fashion accessories all means a lot for modern society of today. Same is the case with trendy looking [url=http://www.thomasaboukstore.com/charms.html]thomas sabo charms[/url]. When these are [url=http://www.thomasaboukstore.com/bracelets.html]thomas sabo bracelet[/url], the excitement just gets doubled. Most chic looking [url=http://www.thomasaboukstore.com/]thomas sabo jewellery[/url] are in fashion now. If you have not yet tried [url=http://www.thomasaboukstore.com/]thomas sabo sale[/url], it's time to own one and feel the difference it can make to your personality. |
[ No Comments Allowed for Anonymous, please register ]
[ No Comments Allowed for Anonymous, please register ]
[ No Comments Allowed for Anonymous, please register ]
[ No Comments Allowed for Anonymous, please register ]
[ No Comments Allowed for Anonymous, please register ]
Re: Cisco Switch vulnerability (Score: 1) by tina on Thursday, September 22 @ 04:39:48 BST (User Info | Send a Message) | There are so many different kinds of bags in Longchamp. Longchamp bags - The women's fashion bags on longchamp outlet. This is where to look for your style, and spread one's individuality. In particular,Longchamp le pliage is very popular with yong ladies. It is designed by Mario Sorrenti. If you want to own unqie one, please contact us. Thanks!
|
[ No Comments Allowed for Anonymous, please register ]
[ No Comments Allowed for Anonymous, please register ]
[ No Comments Allowed for Anonymous, please register ]
[ No Comments Allowed for Anonymous, please register ]
|