Login or Register to Ask a Question and Join Our Community


Security Advisories (RSS)

S-376: Cisco uBR10012 Series Devices SNMP Vulnerability

Login to Discuss or Reply to this Discussion in Our Community

 
Thread Tools Search this Thread
Special Forums Cybersecurity Security Advisories (RSS) S-376: Cisco uBR10012 Series Devices SNMP Vulnerability
# 1  
Old 09-25-2008
S-376: Cisco uBR10012 Series Devices SNMP Vulnerability
Cisco uBR10012 series devices automatically enable Simple Network Management Protocol (SNMP) read/write access to the device if configured for linecard redundancy. This can be exploited by an attacker to gain complete control of the device. The risk is HIGH. Successful exploitation of the vulnerability may allow an attacker to gain complete control of the device.


More...
Login or Register to Ask a Question

Previous Thread | Next Thread

7 More Discussions You Might Find Interesting

1. Linux

Syslog Server for Cisco Devices

Hi, My name is SAMKZ and I'm a dummy with Linux and I'm so sad about that. I need to have a Syslog Server to archive Logs from my Cisco Routers and Switches. I'd like to know to most robust way of doing this. I've installed Centos 5.9 and Trixbox both on VMWares. I've read... (1 Reply)
Discussion started by: SAMKZ
1 Replies

2. Infrastructure Monitoring

Nagios 3.3.1 SNMP with Cisco Switch Fails

Hello all! I am running Nagios 3.3.1 and I am trying to get it to monitor the ports on my Cisco Catalyst 3524-XL-PWR Managed Switch. But I keep getting "(Return code of 127 is out of bounds - plugin may be missing)" I have installed and compiled the plugins and the snmp services on the Ubuntu... (0 Replies)
Discussion started by: RossIV
0 Replies

3. Shell Programming and Scripting

perl Net::SNMP version getting info from cisco switch

I am having trouble working with SNMP module with perl. I am trying to get SNMP version of target system. I use following code to get it however it resturns error as "Argument "v6.0.1" isn't numeric in numeric lt (<) at ./chk_env_upd.pl line 447." Get load table my $resultat =... (1 Reply)
Discussion started by: dynamax
1 Replies

4. Infrastructure Monitoring

keep track of devices using snmp

hello all, i want to keep track of all my devices using snmp, check for intrusion. any ideas? T (0 Replies)
Discussion started by: lemseffert
0 Replies

5. OS X (Apple)

Terminal scripting to automate login to cisco devices. Help Please !

Hello, I am new to the mac world, and would like to automate my login to cisco devices (routers, switches etc...), i am in a need of writing a script that i may just click on an icon on the desktop and it will open terminal and run a few command. as follow: telnet to an ip address type... (2 Replies)
Discussion started by: drdread
2 Replies

6. UNIX for Dummies Questions & Answers

Connecting to cisco devices via console

I use configure cisco devices daily using hyper terminal in windows via the serial port. Is there an alternative solution in unix that I can connect to a cisco console port via serial port? What application do I need?? (1 Reply)
Discussion started by: dgroove3
1 Replies

7. Cybersecurity

SNMP Vulnerability

SNMP Vulnerability: In a few minutes wire services and other news sources will begin breaking a story about widespread vulnerabilities in SNMP (Simple Network Management Protocol). Exploits of the vulnerability cause systems to fail or to be taken over. The vulnerability can be found in... (1 Reply)
Discussion started by: dpatel
1 Replies
Login or Register to Ask a Question

LEARN ABOUT DEBIAN

snmp::info::ciscoconfig

Info::CiscoConfig(3pm)					User Contributed Perl Documentation				    Info::CiscoConfig(3pm)

NAME

       SNMP::Info::CiscoConfig - SNMP Interface to Cisco Configuration Files

AUTHOR

       Justin Hunter, Eric Miller

SYNOPSIS

	   my $ciscoconfig = new SNMP::Info(
				 AutoSpecify => 1,
				 Debug	     => 1,
				 DestHost    => 'myswitch',
				 Community   => 'public',
				 Version     => 2
			       )

	   or die "Can't connect to DestHost.
";

	   my $class = $ciscoconfig->class();
	   print " Using device sub class : $class
";

DESCRIPTION

       SNMP::Info::CiscoConfig is a subclass of SNMP::Info that provides an interface to CISCO-CONFIG-COPY-MIB, CISCO-FLASH-MIB, and OLD-CISCO-
       SYS-MIB.  These MIBs facilitate the writing of configuration files.

       Use or create a subclass of SNMP::Info that inherits this one.  Do not use directly.

   Inherited Classes
	   None.

   Required MIBs
       CISCO-CONFIG-COPY-MIB
       CISCO-FLASH-MIB
       OLD-CISCO-SYS-MIB

GLOBALS

       These are methods that return scalar value from SNMP

       $ciscoconfig->old_write_mem()
	   ("writeMem")

       $ciscoconfig->old_write_net()
	   ("writeNet")

TABLE METHODS

       These are methods that return tables of information in the form of a reference to a hash.

   Config Copy Request Table  ("ccCopyTable")
       $ciscoconfig->config_protocol()
	   ("ccCopyProtocol")

       $ciscoconfig->config_source_type()
	   ("ccCopySourceFileType")

       $ciscoconfig->config_dest_type()
	   ("ccCopyDestFileType")

       $ciscoconfig->config_server_addr()
	   ("ccCopyServerAddress")

       $ciscoconfig->config_filename()
	   ("ccCopyFileName")

       $ciscoconfig->config_username()
	   ("ccCopyUserName")

       $ciscoconfig->config_password()
	   ("ccCopyUserPassword")

       $ciscoconfig->config_notify_complete()
	   ("ccCopyNotificationOnCompletion")

       $ciscoconfig->config_copy_state()
	   ("ccCopyState")

       $ciscoconfig->config_copy_start_time()
	   ("ccCopyTimeStarted")

       $ciscoconfig->config_copy_complete_time()
	   ("ccCopyTimeCompleted")

       $ciscoconfig->config_fail_cause()
	   ("ccCopyFailCause")

       $ciscoconfig->config_row_status()
	   ("ccCopyEntryRowStatus")

   Flash Copy Table ("ciscoFlashCopyTable")
       Table of Flash copy operation entries.

       $ciscoconfig->flash_copy_cmd()
	   ("ciscoFlashCopyCommand")

       $ciscoconfig->flash_copy_protocol()
	   ("ciscoFlashCopyProtocol")

       $ciscoconfig->flash_copy_address()
	   ("ciscoFlashCopyServerAddress")

       $ciscoconfig->flash_copy_source()
	   ("ciscoFlashCopySourceName")

       $ciscoconfig->flash_copy_dest()
	   ("ciscoFlashCopyDestinationName")

       $ciscoconfig->flash_copy_row_status()
	   ("ciscoFlashCopyEntryStatus")

SET METHODS

       These are methods that provide SNMP set functionality for overridden methods or provide a simpler interface to complex set operations.  See
       "SETTING DATA VIA SNMP" in SNMP::Info for general information on set operations.

       $ciscoconfig->copy_run_tftp (tftpserver, tftpfilename )
	   Store the running configuration on a TFTP server.  Equivalent to the CLI commands "copy running-config tftp" or "write net".

	   This method attempts to use newer "copy running-config tftp" procedure first and then the older "write net" procedure if that fails.
	   The newer procedure is supported Cisco devices with the CISCO-CONFIG-COPY-MIB available, Cisco IOS software release 12.0 or on some
	   devices as early as release 11.2P.  The older procedure has been depreciated by Cisco and is utilized only to support devices running
	   older code revisions.

	    Example:
	    $ciscoconfig->copy_run_tftp('1.2.3.4', 'myconfig')
	       or die Couldn't save config. ",$ciscoconfig->error(1);

       $ciscoconfig->copy_run_start()
	   Copy the running configuration to the start up configuration.  Equivalent to the CLI command "copy running-config startup-config" or
	   "write mem".

	   This method attempts to use newer "copy running-config startup-config" procedure first and then the older "write mem" procedure if that
	   fails.  The newer procedure is supported Cisco devices with the CISCO-CONFIG-COPY-MIB available, Cisco IOS software release 12.0 or on
	   some devices as early as release 11.2P.  The older procedure has been depreciated by Cisco and is utilized only to support devices
	   running older code revisions.

	    Example:
	    $ciscoconfig->copy_run_start()
	       or die "Couldn't save config. ",$ciscoconfig->error(1);

perl v5.12.4							    2011-09-28						    Info::CiscoConfig(3pm)