ML
    • Register
    • Login
    • Search
    • Recent
    • Categories
    • Tags
    • Popular
    • Users
    • Groups

    Cisco Security Vulnerability Thread.

    News
    cisco security
    14
    91
    5204
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • travisdh1
      travisdh1 last edited by travisdh1

      Yes, they made my news feeds again today.

      https://www.bleepingcomputer.com/news/security/hardcoded-password-found-in-cisco-software/

      0_1520624886619_1a64fdf4-087b-4e3c-ad49-a84c7b3a2cbe-image.png

      Since Cisco keeps being so popular with the security breaches and vulnerabilities, I figured it's time they get their very own thread.

      1 Reply Last reply Reply Quote 9
      • DustinB3403
        DustinB3403 last edited by

        "Cisco, you pay us for a premium, and we give you our second best"

        scottalanmiller 1 Reply Last reply Reply Quote 3
        • travisdh1
          travisdh1 last edited by

          Remote, unauthenticated, arbitrary code this time
          https://thehackernews.com/2018/04/cisco-switches-hacking.html

          scottalanmiller 1 Reply Last reply Reply Quote 3
          • scottalanmiller
            scottalanmiller @DustinB3403 last edited by

            @dustinb3403 said in Cisco Security Vulnerability Thread.:

            "Cisco, you pay us for a premium, and we give you our second best"

            Since when did they do second best? That's way better than I've seen.

            1 Reply Last reply Reply Quote 1
            • scottalanmiller
              scottalanmiller @travisdh1 last edited by

              @travisdh1 said in Cisco Security Vulnerability Thread.:

              Remote, unauthenticated, arbitrary code this time
              https://thehackernews.com/2018/04/cisco-switches-hacking.html

              Fail.

              1 Reply Last reply Reply Quote 0
              • travisdh1
                travisdh1 last edited by

                Cisco routers took down central rail monitoring station.

                https://ggwash.org/view/67198/metro-reasons-failed-metro-networking-equipment-blinds-control-center-for-three-hours

                Control stations we're not effected, thankfully.

                scottalanmiller 1 Reply Last reply Reply Quote 0
                • scottalanmiller
                  scottalanmiller @travisdh1 last edited by

                  @travisdh1 said in Cisco Security Vulnerability Thread.:

                  Cisco routers took down central rail monitoring station.

                  https://ggwash.org/view/67198/metro-reasons-failed-metro-networking-equipment-blinds-control-center-for-three-hours

                  Control stations we're not effected, thankfully.

                  The Cisco routers were the attackers?

                  travisdh1 1 Reply Last reply Reply Quote 0
                  • travisdh1
                    travisdh1 @scottalanmiller last edited by

                    @scottalanmiller said in Cisco Security Vulnerability Thread.:

                    @travisdh1 said in Cisco Security Vulnerability Thread.:

                    Cisco routers took down central rail monitoring station.

                    https://ggwash.org/view/67198/metro-reasons-failed-metro-networking-equipment-blinds-control-center-for-three-hours

                    Control stations we're not effected, thankfully.

                    The Cisco routers were the attackers?

                    A software bug brings them down hard after a certain number of days. So, yeah, I guess they were.

                    1 Reply Last reply Reply Quote 0
                    • travisdh1
                      travisdh1 last edited by

                      I've been lying down on the job apparently. 4 sets of hardcore credentials removed in the past 4 months. https://www.bleepingcomputer.com/news/security/cisco-removes-backdoor-account-fourth-in-the-last-four-months/

                      1 Reply Last reply Reply Quote 0
                      • travisdh1
                        travisdh1 last edited by

                        Just saw this today. Announced last week and actively being exploited. A directory traversal which leads to sensitive system information being disclosed or the device crashing.

                        https://www.bleepingcomputer.com/news/security/cisco-asa-flaw-exploited-in-the-wild-after-publication-of-two-pocs/

                        1 Reply Last reply Reply Quote 0
                        • travisdh1
                          travisdh1 last edited by

                          Brilliant I tell you. An undocumented root level password left in the management layer.

                          All your network are belong to us.

                          https://www.bleepingcomputer.com/news/security/cisco-removes-undocumented-root-password-from-bandwidth-monitoring-software/

                          1 Reply Last reply Reply Quote 1
                          • momurda
                            momurda last edited by momurda

                            Literally just reading about this one.
                            9.8 out of 10
                            "fifth undocumented password (aka backdoor) that Cisco has removed from its software in the past 5 months."
                            'Undocumented except by the fbi and nsa' I think is what they meant.

                            scottalanmiller 1 Reply Last reply Reply Quote 4
                            • scottalanmiller
                              scottalanmiller @momurda last edited by

                              @momurda said in Cisco Security Vulnerability Thread.:

                              Literally just reading about this one.
                              9.8 out of 10
                              "fifth undocumented password (aka backdoor) that Cisco has removed from its software in the past 5 months."
                              'Undocumented except by the fbi and nsa' I think is what they meant.

                              And in hacker documents the world over.

                              1 Reply Last reply Reply Quote 2
                              • travisdh1
                                travisdh1 last edited by

                                Our monthly hardcoded root credentials are in.

                                https://www.zdnet.com/article/cisco-weve-killed-another-critical-hard-coded-root-password-bug-patch-urgently/

                                scottalanmiller 1 Reply Last reply Reply Quote 1
                                • scottalanmiller
                                  scottalanmiller @travisdh1 last edited by

                                  @travisdh1 said in Cisco Security Vulnerability Thread.:

                                  Our monthly hardcoded root credentials are in.

                                  https://www.zdnet.com/article/cisco-weve-killed-another-critical-hard-coded-root-password-bug-patch-urgently/

                                  Definitely showing that even becoming famous for having hard coded creds, they won't change any till caught and forced to change them.

                                  coliver 1 Reply Last reply Reply Quote 2
                                  • coliver
                                    coliver @scottalanmiller last edited by

                                    @scottalanmiller said in Cisco Security Vulnerability Thread.:

                                    @travisdh1 said in Cisco Security Vulnerability Thread.:

                                    Our monthly hardcoded root credentials are in.

                                    https://www.zdnet.com/article/cisco-weve-killed-another-critical-hard-coded-root-password-bug-patch-urgently/

                                    Definitely showing that even becoming famous for having hard coded creds, they won't change any till caught and forced to change them.

                                    I mean the people that buy Cisco probably don't care too much.

                                    scottalanmiller 1 Reply Last reply Reply Quote 1
                                    • scottalanmiller
                                      scottalanmiller @coliver last edited by

                                      @coliver said in Cisco Security Vulnerability Thread.:

                                      @scottalanmiller said in Cisco Security Vulnerability Thread.:

                                      @travisdh1 said in Cisco Security Vulnerability Thread.:

                                      Our monthly hardcoded root credentials are in.

                                      https://www.zdnet.com/article/cisco-weve-killed-another-critical-hard-coded-root-password-bug-patch-urgently/

                                      Definitely showing that even becoming famous for having hard coded creds, they won't change any till caught and forced to change them.

                                      I mean the people that buy Cisco probably don't care too much.

                                      Good point. Or at all.

                                      1 Reply Last reply Reply Quote 1
                                      • travisdh1
                                        travisdh1 last edited by

                                        A bumper night last night for Cisco. Not one, not two, but three privilege escalation and remote command execution threats announced.

                                        https://tools.cisco.com/security/center/publicationListing.x

                                        scottalanmiller 1 Reply Last reply Reply Quote 2
                                        • scottalanmiller
                                          scottalanmiller @travisdh1 last edited by

                                          @travisdh1 said in Cisco Security Vulnerability Thread.:

                                          A bumper night last night for Cisco. Not one, not two, but three privilege escalation and remote command execution threats announced.

                                          https://tools.cisco.com/security/center/publicationListing.x

                                          Wow

                                          1 Reply Last reply Reply Quote 0
                                          • travisdh1
                                            travisdh1 last edited by

                                            WebEx, local privilege escalation vulnerability.

                                            https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20181024-webex-injection

                                            RojoLoco 1 Reply Last reply Reply Quote 0
                                            • First post
                                              Last post