[59774] in North American Network Operators' Group
RE: Cisco vulnerability on smaller catalyst switches
daemon@ATHENA.MIT.EDU (Steve Rude)
Fri Jul 18 20:27:10 2003
Date: Fri, 18 Jul 2003 17:26:21 -0700
From: "Steve Rude" <steve@skyriver.net>
To: "Haesu" <haesu@towardex.com>, <nanog@merit.edu>
Errors-To: owner-nanog-outgoing@merit.edu
>> I tested Catalyst 2924-XL-EN with 12.0(5)WC5a and I found that
without
>> L3 capability it does not seem to be affected. But with L3
>> connectivity, if you direct the attack at the VLAN1 interface it is
>> definitely susceptible.=20
> I believe directing the attack to VLAN1 should just kill the remote=20
> management and won't effect switching capability. Can anyone confirm?
Ah, you are right. I just tested it, and the switching through the
catalyst continues without interruption. Only the management interface
is unavailable.
--steve
