CISCO : Cisco Aironet 1800, 2800, and 3800 Series Access Points Plug-and-Play Arbitrary Code Execution Vulnerability

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 146377 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.106803

Categoría: CISCO

Título: Cisco Aironet 1800, 2800, and 3800 Series Access Points Plug-and-Play Arbitrary Code Execution Vulnerability

Resumen: A vulnerability in the Plug-and-Play (PnP) subsystem of the Cisco Aironet;1800, 2800, and 3800 Series Access Points running a Lightweight Access Point (AP) or Mobility Express image could;allow an unauthenticated, adjacent attacker to execute arbitrary code with root privileges.

Descripción: Summary:
A vulnerability in the Plug-and-Play (PnP) subsystem of the Cisco Aironet
1800, 2800, and 3800 Series Access Points running a Lightweight Access Point (AP) or Mobility Express image could
allow an unauthenticated, adjacent attacker to execute arbitrary code with root privileges.

Vulnerability Insight:
The vulnerability is due to insufficient validation of PnP server responses.
The PnP feature is only active while the device does not contain a configuration, such as a first time boot or
after a factory reset has been issued. An attacker with the ability to respond to PnP configuration requests from
the affected device can exploit the vulnerability by returning malicious PnP responses. If a Cisco Application
Policy Infrastructure Controller - Enterprise Module (APIC-EM) is available on the network, the attacker would
need to exploit the issue in the short window before a valid PnP response was received.

Vulnerability Impact:
If successful, the attacker could gain the ability to execute arbitrary code
with root privileges on the underlying operating system of the device.

Solution:
Update to version 8.3.112.0 or later.

CVSS Score:
7.9

CVSS Vector:
AV:A/AC:M/Au:N/C:C/I:C/A:C

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2017-3873
BugTraq ID: 98296
http://www.securityfocus.com/bid/98296
http://www.securitytracker.com/id/1038394

Copyright Copyright (C) 2017 Greenbone Networks GmbH

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.106803
Categoría:	CISCO
Título:	Cisco Aironet 1800, 2800, and 3800 Series Access Points Plug-and-Play Arbitrary Code Execution Vulnerability
Resumen:	A vulnerability in the Plug-and-Play (PnP) subsystem of the Cisco Aironet;1800, 2800, and 3800 Series Access Points running a Lightweight Access Point (AP) or Mobility Express image could;allow an unauthenticated, adjacent attacker to execute arbitrary code with root privileges.
Descripción:	Summary: A vulnerability in the Plug-and-Play (PnP) subsystem of the Cisco Aironet 1800, 2800, and 3800 Series Access Points running a Lightweight Access Point (AP) or Mobility Express image could allow an unauthenticated, adjacent attacker to execute arbitrary code with root privileges. Vulnerability Insight: The vulnerability is due to insufficient validation of PnP server responses. The PnP feature is only active while the device does not contain a configuration, such as a first time boot or after a factory reset has been issued. An attacker with the ability to respond to PnP configuration requests from the affected device can exploit the vulnerability by returning malicious PnP responses. If a Cisco Application Policy Infrastructure Controller - Enterprise Module (APIC-EM) is available on the network, the attacker would need to exploit the issue in the short window before a valid PnP response was received. Vulnerability Impact: If successful, the attacker could gain the ability to execute arbitrary code with root privileges on the underlying operating system of the device. Solution: Update to version 8.3.112.0 or later. CVSS Score: 7.9 CVSS Vector: AV:A/AC:M/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2017-3873 BugTraq ID: 98296 http://www.securityfocus.com/bid/98296 http://www.securitytracker.com/id/1038394
Copyright	Copyright (C) 2017 Greenbone Networks GmbH