Ordentligt säkerhetshål hittat i Ciscoswitchar

Hacker News:

The company identified this highest level of vulnerability in its product while analyzing “Vault 7” — a roughly 8,761 documents and files leaked by Wikileaks last week, claiming to detail hacking tools and tactics of the Central Intelligence Agency (CIA).

The vulnerability resides in the Cluster Management Protocol (CMP) processing code in Cisco IOS and Cisco IOS XE Software.

If exploited, the flaw (CVE-2017-3881) could allow an unauthenticated, remote attacker to cause a reboot of an affected device or remotely execute malicious code on the device with elevated privileges to take full control of the device, Cisco says in its advisory.The CMP protocol has been designed to pass around information about switch clusters between cluster members using Telnet or SSH.

Så CIA, en amerikansk myndighet, ägnar sig åt leta efter- och exploatera amerikanska nätverksprodukter, i det här fallet från Cisco.  Härligt.

© 2020 Omsoc Publishing AB