Management bug can crash Cisco IOS, IOS XE

Nine SNMP MIBs vulnerable. Cisco’s been caught out by the venerable Simple Network Management Protocol, turning up nine bugs in IOS and IOS XE that appear in all SNMP versions.

Its implementation of SNMP v1, v2c and v3 – in other words, all versions in use – has a buffer overflow condition that in the right conditions can be exploited for denial-of-service and remote code execution.

The two older versions are vulnerable if an attacker knows a network’s read-only SNMP community string; SNMP v3 is only vulnerable if an attacker has user credentials for the affected system.

There are nine CVEs associated with the bug (CVE-2017-6736, CVE-2017-6737, CVE-2017-6738, CVE-2017-6739, CVE-2017-6740, CVE-2017-6741, CVE-2017-6742, CVE-2017-6743, CVE-2017-6744), reflecting the nine SNMP Management Information Bases (MIBs) it appears in:

  • ADSL-LINE-MIB
  • ALPS-MIB
  • CISCO-ADSL-DMT-LINE-MIB
  • CISCO-BSTUN-MIB
  • CISCO-MAC-AUTH-BYPASS-MIB
  • CISCO-SLB-EXT-MIB
  • CISCO-VOICE-DNIS-MIB
  • CISCO-VOICE-NUMBER-EXPANSION-MIB
  • TN3270E-RT-MIB

Switchzilla says it’s working on software updates. In the meantime, sysadmins need to restrict SNMP access, and if they can, disable the vulnerable MIBs.

Source:http://ift.tt/2s7y3cp

The post Management bug can crash Cisco IOS, IOS XE appeared first on Information Security Newspaper.

from Information Security Newspaper http://ift.tt/2tqSF3r

Anuncios

Responder

Introduce tus datos o haz clic en un icono para iniciar sesión:

Logo de WordPress.com

Estás comentando usando tu cuenta de WordPress.com. Cerrar sesión / Cambiar )

Imagen de Twitter

Estás comentando usando tu cuenta de Twitter. Cerrar sesión / Cambiar )

Foto de Facebook

Estás comentando usando tu cuenta de Facebook. Cerrar sesión / Cambiar )

Google+ photo

Estás comentando usando tu cuenta de Google+. Cerrar sesión / Cambiar )

Conectando a %s