Sci-tech

Cisco reports bug disclosed in Wikileaks' Vault 7 Central Intelligence Agency dump

Cisco reports bug disclosed in Wikileaks' Vault 7 Central Intelligence Agency dump

A vulnerability in Cisco's widely deployed IOS software that was disclosed in the recent WikiLeaks dump of Central Intelligence Agency exploits has triggered the company to release a critical warning for its Catalyst networking customers.

It's a two-fold bug: first, the protocol doesn't restrict CMP-specific Telnet to local communications, instead processing commands over "any Telnet connection to an affected device"; and second, malformed CMP-specific Telnet options are incorrectly processed.

It continues: "An attacker could exploit this vulnerability by sending malformed CMP-specific Telnet options while establishing a Telnet session with an affected Cisco device configured to accept Telnet connections".

As CMP passes around data using the Telnet or SSH networking protocols, the bug could allow attackers to exploit affected devices using the IPv4 or IPv6 internetworking protocols. This will prevent hackers from attempting to exploit the vulnerability of the IOS and IOS XE.

Cisco noted that it will release a software update for the affected switches in order to plug the security hole, but for the time being it recommends users of the vulnerable switches disable Telnet as an allowed protocol for incoming connections and make use of just SSH instead.

The list of affected products is huge, covering 264 Catalyst switches, 51 industrial Ethernet switches, the Cisco RF Gateway 10, SM-X Layer 2/3 EtherSwitch Service Module and more.

The malware, once installed on a Cisco device, seem to provide a range of capabilities: data collection, data exfiltration, command execution with administrative privileges (and without any logging of such commands ever been executed), HTML traffic redirection, manipulation and modification (insertion of HTML code on web pages), DNS poisoning, covert tunneling and others.

While Friday's advisory said there are "no workaround that address this vulnerability", it did say the vulnerability was active only when buggy devices were configured to accept incoming telnet connections.

Cisco's advisory doesn't tell us if it's aware of exploits using the flaw.

In its advisory, Cisco said that the vulnerability was identified "during the analysis of documents related to the Vault 7 disclosure".

The bug is a critical one and an attacker who is able to exploit it would be able to get complete control of a target device.

Documents published so far don't appear to explicitly discuss technical details of the vulnerabilities or how to exploit them. Last week, WikiLeaks founder Julian Assange vowed he would privately disclose those details to manufacturers so they would have time to fix them before the vulnerabilities became widely known. Information on how to do both can be found on the Cisco Guide to Harden Cisco IOS Devices.


  • Chicago Music Store Forced to Shut Down Over Owners' Trump Support

    When my fellow Chicagoans praised the riot at UIC that shut down the Chicago Trump rally I attended, I was angry and ashamed. Other Chicago Trump supporters are experiencing the same hate, bullying and intimidation.

    Cheetah Trailer for Injustice 2 Debuts

    For the first time gamers can take control of how their characters look, fight and develop across a variety of game modes. The line between hero and villain has become blurred as the most epic battle in the DC universe rages on in Injustice 2 .

    Movers to Watch: Navient Corporation (NAVI), Cypress Semiconductor Corporation (CY)

    According to their observations and findings, the stock could provide a high EPS of $0.19/share and a Low EPS of $0.14/share. GWM Advisors LLC bought a new position in Cypress Semiconductor during the third quarter worth $365,000.
  • Goldman Sachs BDC, Inc. (NYSE:GSBD) Reviewed By Analysts

    The current share price indicate that stock is -4.39% away from its one year high and is moving 78.22% ahead of its 52-week low. The investment management company reported $5.08 EPS for the quarter, topping the consensus estimate of $4.82 by $0.26.

    Uncharted: The Lost Legacy definitely won't include a cameo by Nathan Drake

    The second and the third image is a character artwork of Nadine and the lead antagonist of The Lost Legacy , Asav . For Chloe and Nadine, the voice actresses remains the same, Claudia Black and Laura Bailey respectively.

    Spring could bring Arctic snow and ice, Met Office warns

    It comes on the day of the vernal equinox, March 20, which marks the beginning of spring for the Northern Hemisphere. A yellow "be aware" warning has been issued for the Western Isles and parts of the Highlands and Aberdeenshire.
  • Jurgen Klopp laments missed City opportunity as a 'disappointment'

    Aguero sidefooted wide late on and then ballooned the final chance of the game high over the crossbar in stoppage time. Annoyed at the award of a free-kick to Liverpool , cameras trained on Guardiola as he exchanged words with Klopp.

    What do Analysts suggest for: Novo Nordisk A/S (NYSE:NVO)

    Physicians Financial Services Inc. acquired a new position in Novo Nordisk A/S during the third quarter worth about $145,000. Jefferies Group LLC reiterated a "hold" rating on shares of Novo Nordisk A/S in a research report on Tuesday, December 20th.

    Judge to hear arguments in Roman Polanski case

    The Los Angeles district attorney has opposed any attempt by Polanski to conclude the case without him first returning to the U.S. Fidler, the judge overseeing the case at that time, said that if Polanski returned to L.A. he wouldn't have to serve more time.
  • Mother Hit in The Face with Cheeseburger by Her Own Daughter

    Police are investigating after responding to a call about a woman assaulted with a cheeseburger. According to police, a daughter is accused of assaulting her mother with a cheeseburger.

    Turkey condemns Germany for allowing PKK followers march

    More than 40,000 people have been killed since the PKK launched its insurgency against the Turkish state in 1984. Turkey angrily denounced the demonstration as "unacceptable".

    Brexit process to be formally triggered on March 29

    She has been vocal that Britain is heading for a "bad deal" on Brexit and apparently wants out. In 2016, British citizens narrowly approved the move, known as the Brexit, in a referendum.