CISCO : SNMP Remote Code Execution Vulnerabilities in Cisco IOS Software

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 146377 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.106914

Categoría: CISCO

Título: SNMP Remote Code Execution Vulnerabilities in Cisco IOS Software

Resumen: The Simple Network Management Protocol (SNMP) subsystem of Cisco IOS Software;contains multiple vulnerabilities that could allow an authenticated, remote attacker to remotely execute code on;an affected system or cause an affected system to reload. An attacker could exploit these vulnerabilities by;sending a crafted SNMP packet to an affected system via IPv4 or IPv6. Only traffic directed to an affected system;can be used to exploit these vulnerabilities.

Descripción: Summary:
The Simple Network Management Protocol (SNMP) subsystem of Cisco IOS Software
contains multiple vulnerabilities that could allow an authenticated, remote attacker to remotely execute code on
an affected system or cause an affected system to reload. An attacker could exploit these vulnerabilities by
sending a crafted SNMP packet to an affected system via IPv4 or IPv6. Only traffic directed to an affected system
can be used to exploit these vulnerabilities.

Vulnerability Insight:
The vulnerabilities are due to a buffer overflow condition in the SNMP
subsystem of the affected software. The vulnerabilities affect all versions of SNMP - Versions 1, 2c, and 3. To
exploit these vulnerabilities via SNMP Version 2c or earlier, the attacker must know the SNMP read-only community
string for the affected system. To exploit these vulnerabilities via SNMP Version 3, the attacker must have user
credentials for the affected system.

Vulnerability Impact:
A successful exploit could allow the attacker to execute arbitrary code and
obtain full control of the affected system or cause the affected system to reload.

Solution:
See the referenced vendor advisory for a solution.

CVSS Score:
9.0

CVSS Vector:
AV:N/AC:L/Au:S/C:C/I:C/A:C

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2017-6744
cisco-sa-20170629-snmp
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170629-snmp
Common Vulnerability Exposure (CVE) ID: CVE-2017-6743
BugTraq ID: 99345
http://www.securityfocus.com/bid/99345
http://www.securitytracker.com/id/1038808
Common Vulnerability Exposure (CVE) ID: CVE-2017-6742
Common Vulnerability Exposure (CVE) ID: CVE-2017-6741
Common Vulnerability Exposure (CVE) ID: CVE-2017-6740
Common Vulnerability Exposure (CVE) ID: CVE-2017-6739
Common Vulnerability Exposure (CVE) ID: CVE-2017-6738
Common Vulnerability Exposure (CVE) ID: CVE-2017-6737
Common Vulnerability Exposure (CVE) ID: CVE-2017-6736
https://www.exploit-db.com/exploits/43450/
https://github.com/artkond/cisco-snmp-rce

Copyright Copyright (C) 2017 Greenbone AG

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.106914
Categoría:	CISCO
Título:	SNMP Remote Code Execution Vulnerabilities in Cisco IOS Software
Resumen:	The Simple Network Management Protocol (SNMP) subsystem of Cisco IOS Software;contains multiple vulnerabilities that could allow an authenticated, remote attacker to remotely execute code on;an affected system or cause an affected system to reload. An attacker could exploit these vulnerabilities by;sending a crafted SNMP packet to an affected system via IPv4 or IPv6. Only traffic directed to an affected system;can be used to exploit these vulnerabilities.
Descripción:	Summary: The Simple Network Management Protocol (SNMP) subsystem of Cisco IOS Software contains multiple vulnerabilities that could allow an authenticated, remote attacker to remotely execute code on an affected system or cause an affected system to reload. An attacker could exploit these vulnerabilities by sending a crafted SNMP packet to an affected system via IPv4 or IPv6. Only traffic directed to an affected system can be used to exploit these vulnerabilities. Vulnerability Insight: The vulnerabilities are due to a buffer overflow condition in the SNMP subsystem of the affected software. The vulnerabilities affect all versions of SNMP - Versions 1, 2c, and 3. To exploit these vulnerabilities via SNMP Version 2c or earlier, the attacker must know the SNMP read-only community string for the affected system. To exploit these vulnerabilities via SNMP Version 3, the attacker must have user credentials for the affected system. Vulnerability Impact: A successful exploit could allow the attacker to execute arbitrary code and obtain full control of the affected system or cause the affected system to reload. Solution: See the referenced vendor advisory for a solution. CVSS Score: 9.0 CVSS Vector: AV:N/AC:L/Au:S/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2017-6744 cisco-sa-20170629-snmp https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170629-snmp Common Vulnerability Exposure (CVE) ID: CVE-2017-6743 BugTraq ID: 99345 http://www.securityfocus.com/bid/99345 http://www.securitytracker.com/id/1038808 Common Vulnerability Exposure (CVE) ID: CVE-2017-6742 Common Vulnerability Exposure (CVE) ID: CVE-2017-6741 Common Vulnerability Exposure (CVE) ID: CVE-2017-6740 Common Vulnerability Exposure (CVE) ID: CVE-2017-6739 Common Vulnerability Exposure (CVE) ID: CVE-2017-6738 Common Vulnerability Exposure (CVE) ID: CVE-2017-6737 Common Vulnerability Exposure (CVE) ID: CVE-2017-6736 https://www.exploit-db.com/exploits/43450/ https://github.com/artkond/cisco-snmp-rce
Copyright	Copyright (C) 2017 Greenbone AG