- #VSTACK COMMAND CISCO INSTALL#
- #VSTACK COMMAND CISCO FULL#
- #VSTACK COMMAND CISCO SOFTWARE#
- #VSTACK COMMAND CISCO CODE#
The Smart Install Client starts a server on the TCP(4786) port (opened by default) to interact with the Smart Install Director. During a short scan of the Internet, Nosenko detected 250,000 vulnerable devices and 8,5 million devices that have a vulnerable port open. The vulnerability was presented at the GeekPWN 2017 Hong-Kong by George Nosenko 1 year ago and Cisco was informed about it at the end of September 2017. Role: Client (SmartInstall enabled) Ciscozine-test-2# show vstack config The following examples show the output of the show vstack config command on Cisco Catalyst Switches that are configured as Smart Install clients: Ciscozine-test-1# show vstack config To determine whether a device is configured with the Smart Install client feature enabled, use the show vstack config privileged EXEC command on the Smart Install client. Cisco devices that are configured as a Smart Install director are not affected by this vulnerability. Only Smart Install client switches are affected by the vulnerability that is described in this advisory.
The director can also allocate an IP address and hostname to a client.
#VSTACK COMMAND CISCO SOFTWARE#
When a client switch is first installed in the network, the director automatically detects the new switch and identifies the correct Cisco IOS Software image and the configuration file for downloading. The director provides a single management point for images and configuration of client switches. A client switch does not need to be directly connected to the director the client switch can be up to seven hops away. The Smart Install feature incorporates no authentication by design.Ī Smart Install network consists of exactly one Smart Install director switch or router, also known as an integrated branch director (IBD), and one or more Smart Install client switches, also known as integrated branch clients (IBCs). The feature allows a customer to ship a Cisco switch to any location, install it in the network, and power it on without additional configuration requirements.
#VSTACK COMMAND CISCO FULL#
So it allows getting full control over a vulnerable network equipment.Ĭisco Smart Install is a “plug-and-play” configuration and image-management feature that provides zero-touch deployment for new (typically access layer) switches.
#VSTACK COMMAND CISCO CODE#
This vulnerability enables an attacker to remotely execute arbitrary code without authentication. In software releases that are associated with Cisco Bug ID CSCvd36820, Cisco Smart Install will auto-disable if not in use.įill up the form below for a sales representative to contact you regarding the patching or workaround on your Cisco Catalyst switch.At the end of March, Cisco published a stack-based buffer overflow vulnerability in Smart Install Client code. For customers not requiring Cisco Smart Install, the feature can be disabled with the no vstack command. There are no workarounds that address this vulnerability for customers who require the use of Cisco Smart Install.
This vulnerability affects Cisco devices that are running a vulnerable release of Cisco IOS or IOS XE Software and have the Smart Install client feature enabled. For a complete list of the advisories and links to them, see Cisco Event Response: March 2018 Semiannual Cisco IOS and IOS XE Software Security Advisory Bundled Publication. This advisory is part of the March 28, 2018, release of the Cisco IOS and IOS XE Software Security Advisory Bundled Publication, which includes 20 Cisco Security Advisories that describe 22 vulnerabilities. This advisory is available at the following link: There are no workarounds that address this vulnerability.
0 kommentar(er)
