Login or Register to Ask a Question and Join Our Community


Security Advisories (RSS)

S-376: Cisco uBR10012 Series Devices SNMP Vulnerability

Login to Discuss or Reply to this Discussion in Our Community

 
Thread Tools Search this Thread
Special Forums Cybersecurity Security Advisories (RSS) S-376: Cisco uBR10012 Series Devices SNMP Vulnerability
# 1  
Old 09-25-2008
S-376: Cisco uBR10012 Series Devices SNMP Vulnerability
Cisco uBR10012 series devices automatically enable Simple Network Management Protocol (SNMP) read/write access to the device if configured for linecard redundancy. This can be exploited by an attacker to gain complete control of the device. The risk is HIGH. Successful exploitation of the vulnerability may allow an attacker to gain complete control of the device.


More...
Login or Register to Ask a Question

Previous Thread | Next Thread

7 More Discussions You Might Find Interesting

1. Linux

Syslog Server for Cisco Devices

Hi, My name is SAMKZ and I'm a dummy with Linux and I'm so sad about that. I need to have a Syslog Server to archive Logs from my Cisco Routers and Switches. I'd like to know to most robust way of doing this. I've installed Centos 5.9 and Trixbox both on VMWares. I've read... (1 Reply)
Discussion started by: SAMKZ
1 Replies

2. Infrastructure Monitoring

Nagios 3.3.1 SNMP with Cisco Switch Fails

Hello all! I am running Nagios 3.3.1 and I am trying to get it to monitor the ports on my Cisco Catalyst 3524-XL-PWR Managed Switch. But I keep getting "(Return code of 127 is out of bounds - plugin may be missing)" I have installed and compiled the plugins and the snmp services on the Ubuntu... (0 Replies)
Discussion started by: RossIV
0 Replies

3. Shell Programming and Scripting

perl Net::SNMP version getting info from cisco switch

I am having trouble working with SNMP module with perl. I am trying to get SNMP version of target system. I use following code to get it however it resturns error as "Argument "v6.0.1" isn't numeric in numeric lt (<) at ./chk_env_upd.pl line 447." Get load table my $resultat =... (1 Reply)
Discussion started by: dynamax
1 Replies

4. Infrastructure Monitoring

keep track of devices using snmp

hello all, i want to keep track of all my devices using snmp, check for intrusion. any ideas? T (0 Replies)
Discussion started by: lemseffert
0 Replies

5. OS X (Apple)

Terminal scripting to automate login to cisco devices. Help Please !

Hello, I am new to the mac world, and would like to automate my login to cisco devices (routers, switches etc...), i am in a need of writing a script that i may just click on an icon on the desktop and it will open terminal and run a few command. as follow: telnet to an ip address type... (2 Replies)
Discussion started by: drdread
2 Replies

6. UNIX for Dummies Questions & Answers

Connecting to cisco devices via console

I use configure cisco devices daily using hyper terminal in windows via the serial port. Is there an alternative solution in unix that I can connect to a cisco console port via serial port? What application do I need?? (1 Reply)
Discussion started by: dgroove3
1 Replies

7. Cybersecurity

SNMP Vulnerability

SNMP Vulnerability: In a few minutes wire services and other news sources will begin breaking a story about widespread vulnerabilities in SNMP (Simple Network Management Protocol). Exploits of the vulnerability cause systems to fail or to be taken over. The vulnerability can be found in... (1 Reply)
Discussion started by: dpatel
1 Replies
Login or Register to Ask a Question

LEARN ABOUT DEBIAN

snmp::info::ciscostats

Info::CiscoStats(3pm)					User Contributed Perl Documentation				     Info::CiscoStats(3pm)

NAME

       SNMP::Info::CiscoStats - Perl5 Interface to CPU and Memory stats for Cisco Devices

AUTHOR

       Eric Miller, Max Baker, Sam Stickland

SYNOPSIS

	# Let SNMP::Info determine the correct subclass for you.
	my $ciscostats = new SNMP::Info(
			   AutoSpecify => 1,
			   Debug       => 1,
			   # These arguments are passed directly on to SNMP::Session
			   DestHost    => 'myswitch',
			   Community   => 'public',
			   Version     => 2
			   )
	   or die "Can't connect to DestHost.
";

	my $class      = $ciscostats->class();
	print "SNMP::Info determined this device to fall under subclass : $class
";

DESCRIPTION

       SNMP::Info::CiscoStats is a subclass of SNMP::Info that provides cpu, memory, os and version information about Cisco Devices.

       Use or create in a subclass of SNMP::Info.  Do not use directly.

   Inherited Classes
       None.

   Required MIBs
       CISCO-PRODUCTS-MIB
       CISCO-PROCESS-MIB
       CISCO-MEMORY-POOL-MIB
       SNMPv2-MIB
       OLD-CISCO-SYSTEM-MIB
       CISCO-STACK-MIB
       CISCO-ENTITY-VENDORTYPE-OID-MIB
       CISCO-FLASH-MIB
       ENTITY-MIB

       MIBs can be found at ftp://ftp.cisco.com/pub/mibs/v2/v2.tar.gz

GLOBALS

       $ciscostats->cpu()
	   Returns ios_cpu() or cat_cpu(), whichever is available.

       $ciscostats->cpu_1min()
	   Returns ios_cpu_1min() or cat_cpu1min(), whichever is available.

       $ciscostats->cpu_5min()
	   Returns ios_cpu_5min() or cat_cpu5min(), whichever is available.

       $ciscostats->mem_total()
	   Returns mem_free() + mem_used()

       $ciscostats->vendor()
	    'cisco'

       $ciscostats->os()
	   Tries to parse if device is running IOS or CatOS from description()

	   Available values :

	   pix Cisco PIX

	   asa Cisco ASA

	   fwsm
	       Single-mode FWSM

	   fwsm-admin
	       Admin context of multi-context FWSM

	   fwsm-context
	       Standard context of multi-context FWSM

	   ace-admin
	       Admin context of ACE module

	   ace-context
	       Standard context of ACE module (NB: No OS version detection is available, but will be the same as it's 'ace admin')

	   css Cisco Content Switch

	   css-sca
	       Cisco Content Switch Secure Content Acceleration

       $ciscostats->os_ver()
	   Tries to parse device operating system version from description()

       $ciscostats->os_bin()
	   Tries to parse ROMMON version from rom_id() string

       $ciscostats->ios_cpu()
	   Current CPU usage in percent.

	   1.3.6.1.4.1.9.2.1.56.0 = "OLD-CISCO-CPU-MIB:avgBusyPer"

       $ciscostats->ios_cpu_1min()
	   Average CPU Usage in percent over the last minute.

	   1.3.6.1.4.1.9.2.1.57.0

       $ciscostats->ios_cpu_5min()
	   Average CPU Usage in percent over the last 5 minutes.

	   1.3.6.1.4.1.9.2.1.58.0

       $ciscostats->cat_cpu()
	   Current CPU usage in percent.

	   "CISCO-PROCESS-MIB::cpmCPUTotal5sec.9"

       $ciscostats->cat_cpu_1min()
	   Average CPU Usage in percent over the last minute.

	   "CISCO-PROCESS-MIB::cpmCPUTotal1min.9"

       $ciscostats->cat_cpu_5min()
	   Average CPU Usage in percent over the last 5 minutes.

	   "CISCO-PROCESS-MIB::cpmCPUTotal5min.9"

       $ciscostats->mem_free()
	   Main DRAM free of the device in bytes.

	   "CISCO-MEMORY-POOL-MIB::ciscoMemoryPoolFree"

       $ciscostats->mem_used()
	   Main DRAM used of the device in bytes.

	   "CISCO-MEMORY-POOL-MIB::ciscoMemoryPoolUsed"

       $ciscostats->mem_total()
	   Main DRAM of the device in bytes.

	   "CISCO-MEMORY-POOL-MIB::ciscoMemoryPoolFree" + "CISCO-MEMORY-POOL-MIB::ciscoMemoryPoolUsed"

       $ciscostats->flashmem_total()
	   Flash memory of the device in bytes.

	   "CISCO-FLASH-MIB::ciscoFlashDeviceSize"

TABLE METHODS

   Cisco Memory Pool Table ("ciscoMemoryPoolTable")
       $ciscostats->cisco_mem_free()
	   The number of bytes from the memory pool that are currently unused on the managed device.

	   ("ciscoMemoryPoolFree")

       $ciscostats->cisco_mem_used()
	   The number of bytes from the memory pool that are currently in use by applications on the managed device.

	   ("ciscoMemoryPoolUsed")

   Cisco Flash Device Table ("ciscoFlashDeviceTable")
       $ciscostats->cisco_flash_size()
	   Total size of the Flash device.  For a removable device, the size will be zero if the device has been removed.

	   ("ciscoFlashDeviceSize")

perl v5.12.4							    2011-09-28						     Info::CiscoStats(3pm)