S-376: Cisco uBR10012 Series Devices SNMP Vulnerability
Cisco uBR10012 series devices automatically enable Simple Network Management Protocol (SNMP) read/write access to the device if configured for linecard redundancy. This can be exploited by an attacker to gain complete control of the device. The risk is HIGH. Successful exploitation of the vulnerability may allow an attacker to gain complete control of the device.
Hi,
My name is SAMKZ and I'm a dummy with Linux and I'm so sad about that.
I need to have a Syslog Server to archive Logs from my Cisco Routers and Switches.
I'd like to know to most robust way of doing this.
I've installed Centos 5.9 and Trixbox both on VMWares.
I've read... (1 Reply)
Hello all!
I am running Nagios 3.3.1 and I am trying to get it to monitor the ports on my Cisco Catalyst 3524-XL-PWR Managed Switch. But I keep getting "(Return code of 127 is out of bounds - plugin may be missing)" I have installed and compiled the plugins and the snmp services on the Ubuntu... (0 Replies)
I am having trouble working with SNMP module with perl. I am trying to get SNMP version of target system. I use following code to get it however it resturns error as "Argument "v6.0.1" isn't numeric in numeric lt (<) at ./chk_env_upd.pl line 447."
Get load table
my $resultat =... (1 Reply)
Hello,
I am new to the mac world, and would like to automate my login to cisco devices (routers, switches etc...), i am in a need of writing a script that i may just click on an icon on the desktop and it will open terminal and run a few command.
as follow:
telnet to an ip address
type... (2 Replies)
I use configure cisco devices daily using hyper terminal in windows via the serial port. Is there an alternative solution in unix that I can connect to a cisco console port via serial port? What application do I need?? (1 Reply)
SNMP Vulnerability:
In a few minutes wire services and other news sources will begin
breaking a story about widespread vulnerabilities in SNMP (Simple
Network Management Protocol). Exploits of the vulnerability cause
systems to fail or to be taken over. The vulnerability can be found in... (1 Reply)
Info::CiscoConfig(3pm) User Contributed Perl Documentation Info::CiscoConfig(3pm)NAME
SNMP::Info::CiscoConfig - SNMP Interface to Cisco Configuration Files
AUTHOR
Justin Hunter, Eric Miller
SYNOPSIS
my $ciscoconfig = new SNMP::Info(
AutoSpecify => 1,
Debug => 1,
DestHost => 'myswitch',
Community => 'public',
Version => 2
)
or die "Can't connect to DestHost.
";
my $class = $ciscoconfig->class();
print " Using device sub class : $class
";
DESCRIPTION
SNMP::Info::CiscoConfig is a subclass of SNMP::Info that provides an interface to CISCO-CONFIG-COPY-MIB, CISCO-FLASH-MIB, and OLD-CISCO-
SYS-MIB. These MIBs facilitate the writing of configuration files.
Use or create a subclass of SNMP::Info that inherits this one. Do not use directly.
Inherited Classes
None.
Required MIBs
CISCO-CONFIG-COPY-MIB
CISCO-FLASH-MIB
OLD-CISCO-SYS-MIB
GLOBALS
These are methods that return scalar value from SNMP
$ciscoconfig->old_write_mem()
("writeMem")
$ciscoconfig->old_write_net()
("writeNet")
TABLE METHODS
These are methods that return tables of information in the form of a reference to a hash.
Config Copy Request Table ("ccCopyTable")
$ciscoconfig->config_protocol()
("ccCopyProtocol")
$ciscoconfig->config_source_type()
("ccCopySourceFileType")
$ciscoconfig->config_dest_type()
("ccCopyDestFileType")
$ciscoconfig->config_server_addr()
("ccCopyServerAddress")
$ciscoconfig->config_filename()
("ccCopyFileName")
$ciscoconfig->config_username()
("ccCopyUserName")
$ciscoconfig->config_password()
("ccCopyUserPassword")
$ciscoconfig->config_notify_complete()
("ccCopyNotificationOnCompletion")
$ciscoconfig->config_copy_state()
("ccCopyState")
$ciscoconfig->config_copy_start_time()
("ccCopyTimeStarted")
$ciscoconfig->config_copy_complete_time()
("ccCopyTimeCompleted")
$ciscoconfig->config_fail_cause()
("ccCopyFailCause")
$ciscoconfig->config_row_status()
("ccCopyEntryRowStatus")
Flash Copy Table ("ciscoFlashCopyTable")
Table of Flash copy operation entries.
$ciscoconfig->flash_copy_cmd()
("ciscoFlashCopyCommand")
$ciscoconfig->flash_copy_protocol()
("ciscoFlashCopyProtocol")
$ciscoconfig->flash_copy_address()
("ciscoFlashCopyServerAddress")
$ciscoconfig->flash_copy_source()
("ciscoFlashCopySourceName")
$ciscoconfig->flash_copy_dest()
("ciscoFlashCopyDestinationName")
$ciscoconfig->flash_copy_row_status()
("ciscoFlashCopyEntryStatus")
SET METHODS
These are methods that provide SNMP set functionality for overridden methods or provide a simpler interface to complex set operations. See
"SETTING DATA VIA SNMP" in SNMP::Info for general information on set operations.
$ciscoconfig->copy_run_tftp (tftpserver, tftpfilename )
Store the running configuration on a TFTP server. Equivalent to the CLI commands "copy running-config tftp" or "write net".
This method attempts to use newer "copy running-config tftp" procedure first and then the older "write net" procedure if that fails.
The newer procedure is supported Cisco devices with the CISCO-CONFIG-COPY-MIB available, Cisco IOS software release 12.0 or on some
devices as early as release 11.2P. The older procedure has been depreciated by Cisco and is utilized only to support devices running
older code revisions.
Example:
$ciscoconfig->copy_run_tftp('1.2.3.4', 'myconfig')
or die Couldn't save config. ",$ciscoconfig->error(1);
$ciscoconfig->copy_run_start()
Copy the running configuration to the start up configuration. Equivalent to the CLI command "copy running-config startup-config" or
"write mem".
This method attempts to use newer "copy running-config startup-config" procedure first and then the older "write mem" procedure if that
fails. The newer procedure is supported Cisco devices with the CISCO-CONFIG-COPY-MIB available, Cisco IOS software release 12.0 or on
some devices as early as release 11.2P. The older procedure has been depreciated by Cisco and is utilized only to support devices
running older code revisions.
Example:
$ciscoconfig->copy_run_start()
or die "Couldn't save config. ",$ciscoconfig->error(1);
perl v5.12.4 2011-09-28 Info::CiscoConfig(3pm)