[39265] in North American Network Operators' Group
Cisco IOS Vulnerability
daemon@ATHENA.MIT.EDU (Larry Diffey)
Fri Jun 29 19:32:11 2001
Message-ID: <00fd01c100f4$26284c80$d9320a0a@LDIFFEY>
From: "Larry Diffey" <ldiffey@technologyforward.com>
To: <nanog@merit.edu>
Date: Fri, 29 Jun 2001 16:35:04 -0700
MIME-Version: 1.0
Content-Type: multipart/alternative;
boundary="----=_NextPart_000_00FA_01C100B9.73743570"
Errors-To: owner-nanog-outgoing@merit.edu
This is a multi-part message in MIME format.
------=_NextPart_000_00FA_01C100B9.73743570
Content-Type: text/plain;
charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
CERT and Cisco have issued a warning about a vulnerability in the Cisco =
IOS starting at version 11.3 and affecting all later versions.
If your Cisco equipment is HTTP enabled and you're not using TACACS+ or =
RADIUS for authentication it is vulnerable to complete takeover. The =
hack is very simple.
Please read the Cisco warning and/or the CERT advisory for further =
information.
The warnings were released yesterday.
Happy Hacker Stopping.
Larry Diffey
------=_NextPart_000_00FA_01C100B9.73743570
Content-Type: text/html;
charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD>
<META http-equiv=3DContent-Type content=3D"text/html; =
charset=3Diso-8859-1">
<META content=3D"MSHTML 6.00.2462.0" name=3DGENERATOR>
<STYLE></STYLE>
</HEAD>
<BODY bgColor=3D#ffffff>
<DIV><FONT face=3DArial size=3D2>CERT and Cisco have issued a warning =
about a=20
vulnerability in the Cisco IOS starting at version 11.3 and affecting =
all later=20
versions.</FONT></DIV>
<DIV><FONT face=3DArial size=3D2></FONT> </DIV>
<DIV><FONT face=3DArial size=3D2>If your Cisco equipment is HTTP enabled =
and you're=20
not using TACACS+ or RADIUS for authentication it is vulnerable to =
complete=20
takeover. The hack is very simple.</FONT></DIV>
<DIV><FONT face=3DArial size=3D2></FONT> </DIV>
<DIV><FONT face=3DArial size=3D2>Please read the <A=20
href=3D"http://www.cisco.com/warp/public/707/IOS-httplevel-pub.html://">C=
isco=20
warning</A> and/or the <A=20
href=3D"http://www.cert.org/advisories/CA-2001-14.html">CERT =
advisory</A> for=20
further information.</FONT></DIV>
<DIV><FONT face=3DArial size=3D2></FONT> </DIV>
<DIV><FONT face=3DArial size=3D2>The warnings were released =
yesterday.</FONT></DIV>
<DIV><FONT face=3DArial size=3D2></FONT> </DIV>
<DIV><FONT face=3DArial size=3D2>Happy Hacker Stopping.</FONT></DIV>
<DIV><FONT face=3DArial size=3D2></FONT> </DIV>
<DIV><FONT face=3DArial size=3D2>Larry Diffey</FONT></DIV>
<DIV><FONT face=3DArial size=3D2></FONT> </DIV></BODY></HTML>
------=_NextPart_000_00FA_01C100B9.73743570--
