[59773] in North American Network Operators' Group


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: Cisco vulnerability on smaller catalyst switches

daemon@ATHENA.MIT.EDU (Haesu)
Fri Jul 18 20:19:05 2003

Date: Fri, 18 Jul 2003 20:18:26 -0400
From: Haesu <haesu@towardex.com>
To: Steve Rude <steve@skyriver.net>, nanog@merit.edu
In-Reply-To: <5E43695CC08E3D43A722EB75F116BC293BC0B3@SKYRIVERSERVER3.skyrivercommunications.com>
Errors-To: owner-nanog-outgoing@merit.edu


> I tested Catalyst 2924-XL-EN with 12.0(5)WC5a and I found that without
> L3 capability it does not seem to be affected.  But with L3
> connectivity, if you direct the attack at the VLAN1 interface it is
> definitely susceptible. 

I believe directing the attack to VLAN1 should just kill the remote managmeent
and won't effect switching capability. Can anyone confirm?

-hc

-- 
Sincerely,
  Haesu C.
  TowardEX Technologies, Inc.
  WWW: http://www.towardex.com
  E-mail: haesu@towardex.com
  Cell: (978) 394-2867

> 
> I've tested 12.0(5)WC8 and it has the fix.
> 
> --steve


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[59773] in North American Network Operators' Group

Re: Cisco vulnerability on smaller catalyst switches

daemon@ATHENA.MIT.EDU (Haesu)Fri Jul 18 20:19:05 2003

daemon@ATHENA.MIT.EDU (Haesu)
Fri Jul 18 20:19:05 2003