SecurityTracker.com
Keep Track of the Latest Vulnerabilities
with SecurityTracker!
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 
Sign Up
Sign Up for Your FREE Weekly SecurityTracker E-mail Alert Summary
Instant Alerts
Buy our Premium Vulnerability Notification Service to receive customized, instant alerts
Affiliates
Put SecurityTracker Vulnerability Alerts on Your Web Site -- It's Free!
Partners
Become a Partner and License Our Database or Notification Service
Report a Bug
Report a vulnerability that you have found to SecurityTracker
bugs
@
securitytracker.com






Category:   Device (Router/Bridge/Hub)  >   Cisco IOS Vendors:   Cisco
Cisco IOS/IOS XE Cluster Management Protocol Lets Remote Users Deny Service and Execute Arbitrary Code on the Target System
SecurityTracker Alert ID:  1038059
SecurityTracker URL:  http://securitytracker.com/id/1038059
CVE Reference:   CVE-2017-3881   (Links to External Site)
Date:  Mar 17 2017
Impact:   Denial of service via network, Execution of arbitrary code via network, Root access via network
Fix Available:  Yes  Vendor Confirmed:  Yes  Exploit Included:  Yes  
Version(s): 15.0(2)SE10
Description:   A vulnerability was reported in Cisco IOS and IOS XE. A remote user can cause the target system to reload. A remote user can execute arbitrary code on the target system.

A remote user can send specially crafted Cluster Management Protocol (CMP) data to the telnet service on the target device to cause the target device to reload or execute arbitrary code with elevated privileges.

Systems configured to accept telnet connections are affected, even if the device has no cluster configuration commands.

The following devices are affected:

Catalyst 2350-48TD-S Switch
Catalyst 2350-48TD-SD Switch
Catalyst 2360-48TD-S Switch
Catalyst 2918-24TC-C Switch
Catalyst 2918-24TT-C Switch
Catalyst 2918-48TC-C Switch
Catalyst 2918-48TT-C Switch
Catalyst 2928-24TC-C Switch
Catalyst 2960-24-S Switch
Catalyst 2960-24LC-S Switch
Catalyst 2960-24LT-L Switch
Catalyst 2960-24PC-L Switch
Catalyst 2960-24PC-S Switch
Catalyst 2960-24TC-L Switch
Catalyst 2960-24TC-S Switch
Catalyst 2960-24TT-L Switch
Catalyst 2960-48PST-L Switch
Catalyst 2960-48PST-S Switch
Catalyst 2960-48TC-L Switch
Catalyst 2960-48TC-S Switch
Catalyst 2960-48TT-L Switch
Catalyst 2960-48TT-S Switch
Catalyst 2960-8TC-L Compact Switch
Catalyst 2960-8TC-S Compact Switch
Catalyst 2960-Plus 24LC-L Switch
Catalyst 2960-Plus 24LC-S Switch
Catalyst 2960-Plus 24PC-L Switch
Catalyst 2960-Plus 24PC-S Switch
Catalyst 2960-Plus 24TC-L Switch
Catalyst 2960-Plus 24TC-S Switch
Catalyst 2960-Plus 48PST-L Switch
Catalyst 2960-Plus 48PST-S Switch
Catalyst 2960-Plus 48TC-L Switch
Catalyst 2960-Plus 48TC-S Switch
Catalyst 2960C-12PC-L Switch
Catalyst 2960C-8PC-L Switch
Catalyst 2960C-8TC-L Switch
Catalyst 2960C-8TC-S Switch
Catalyst 2960CG-8TC-L Compact Switch
Catalyst 2960CPD-8PT-L Switch
Catalyst 2960CPD-8TT-L Switch
Catalyst 2960CX-8PC-L Switch
Catalyst 2960CX-8TC-L Switch
Catalyst 2960G-24TC-L Switch
Catalyst 2960G-48TC-L Switch
Catalyst 2960G-8TC-L Compact Switch
Catalyst 2960L-16PS-LL Switch
Catalyst 2960L-16TS-LL Switch
Catalyst 2960L-24PS-LL Switch
Catalyst 2960L-24TS-LL Switch
Catalyst 2960L-48PS-LL Switch
Catalyst 2960L-48TS-LL Switch
Catalyst 2960L-8PS-LL Switch
Catalyst 2960L-8TS-LL Switch
Catalyst 2960PD-8TT-L Compact Switch
Catalyst 2960S-24PD-L Switch
Catalyst 2960S-24PS-L Switch
Catalyst 2960S-24TD-L Switch
Catalyst 2960S-24TS-L Switch
Catalyst 2960S-24TS-S Switch
Catalyst 2960S-48FPD-L Switch
Catalyst 2960S-48FPS-L Switch
Catalyst 2960S-48LPD-L Switch
Catalyst 2960S-48LPS-L Switch
Catalyst 2960S-48TD-L Switch
Catalyst 2960S-48TS-L Switch
Catalyst 2960S-48TS-S Switch
Catalyst 2960S-F24PS-L Switch
Catalyst 2960S-F24TS-L Switch
Catalyst 2960S-F24TS-S Switch
Catalyst 2960S-F48FPS-L Switch
Catalyst 2960S-F48LPS-L Switch
Catalyst 2960S-F48TS-L Switch
Catalyst 2960S-F48TS-S Switch
Catalyst 2960X-24PD-L Switch
Catalyst 2960X-24PS-L Switch
Catalyst 2960X-24PSQ-L Cool Switch
Catalyst 2960X-24TD-L Switch
Catalyst 2960X-24TS-L Switch
Catalyst 2960X-24TS-LL Switch
Catalyst 2960X-48FPD-L Switch
Catalyst 2960X-48FPS-L Switch
Catalyst 2960X-48LPD-L Switch
Catalyst 2960X-48LPS-L Switch
Catalyst 2960X-48TD-L Switch
Catalyst 2960X-48TS-L Switch
Catalyst 2960X-48TS-LL Switch
Catalyst 2960XR-24PD-I Switch
Catalyst 2960XR-24PD-L Switch
Catalyst 2960XR-24PS-I Switch
Catalyst 2960XR-24PS-L Switch
Catalyst 2960XR-24TD-I Switch
Catalyst 2960XR-24TD-L Switch
Catalyst 2960XR-24TS-I Switch
Catalyst 2960XR-24TS-L Switch
Catalyst 2960XR-48FPD-I Switch
Catalyst 2960XR-48FPD-L Switch
Catalyst 2960XR-48FPS-I Switch
Catalyst 2960XR-48FPS-L Switch
Catalyst 2960XR-48LPD-I Switch
Catalyst 2960XR-48LPD-L Switch
Catalyst 2960XR-48LPS-I Switch
Catalyst 2960XR-48LPS-L Switch
Catalyst 2960XR-48TD-I Switch
Catalyst 2960XR-48TD-L Switch
Catalyst 2960XR-48TS-I Switch
Catalyst 2960XR-48TS-L Switch
Catalyst 2970G-24T Switch
Catalyst 2970G-24TS Switch
Catalyst 2975 Switch
Catalyst 3550 12G Switch
Catalyst 3550 12T Switch
Catalyst 3550 24 DC SMI Switch
Catalyst 3550 24 EMI Switch
Catalyst 3550 24 FX SMI Switch
Catalyst 3550 24 PWR Switch
Catalyst 3550 24 SMI Switch
Catalyst 3550 48 EMI Switch
Catalyst 3550 48 SMI Switch
Catalyst 3560-12PC-S Compact Switch
Catalyst 3560-24PS Switch
Catalyst 3560-24TS Switch
Catalyst 3560-48PS Switch
Catalyst 3560-48TS Switch
Catalyst 3560-8PC Compact Switch
Catalyst 3560C-12PC-S Switch
Catalyst 3560C-8PC-S Switch
Catalyst 3560CG-8PC-S Compact Switch
Catalyst 3560CG-8TC-S Compact Switch
Catalyst 3560CPD-8PT-S Compact Switch
Catalyst 3560CX-12PC-S Switch
Catalyst 3560CX-12PD-S Switch
Catalyst 3560CX-12TC-S Switch
Catalyst 3560CX-8PC-S Switch
Catalyst 3560CX-8PT-S Switch
Catalyst 3560CX-8TC-S Switch
Catalyst 3560CX-8XPD-S Switch
Catalyst 3560E-12D-E Switch
Catalyst 3560E-12D-S Switch
Catalyst 3560E-12SD-E Switch
Catalyst 3560E-12SD-S Switch
Catalyst 3560E-24PD-E Switch
Catalyst 3560E-24PD-S Switch
Catalyst 3560E-24TD-E Switch
Catalyst 3560E-24TD-S Switch
Catalyst 3560E-48PD-E Switch
Catalyst 3560E-48PD-EF Switch
Catalyst 3560E-48PD-S Switch
Catalyst 3560E-48PD-SF Switch
Catalyst 3560E-48TD-E Switch
Catalyst 3560E-48TD-S Switch
Catalyst 3560G-24PS Switch
Catalyst 3560G-24TS Switch
Catalyst 3560G-48PS Switch
Catalyst 3560G-48TS Switch
Catalyst 3560V2-24DC Switch
Catalyst 3560V2-24PS Switch
Catalyst 3560V2-24TS Switch
Catalyst 3560V2-48PS Switch
Catalyst 3560V2-48TS Switch
Catalyst 3560X-24P-E Switch
Catalyst 3560X-24P-L Switch
Catalyst 3560X-24P-S Switch
Catalyst 3560X-24T-E Switch
Catalyst 3560X-24T-L Switch
Catalyst 3560X-24T-S Switch
Catalyst 3560X-24U-E Switch
Catalyst 3560X-24U-L Switch
Catalyst 3560X-24U-S Switch
Catalyst 3560X-48P-E Switch
Catalyst 3560X-48P-L Switch
Catalyst 3560X-48P-S Switch
Catalyst 3560X-48PF-E Switch
Catalyst 3560X-48PF-L Switch
Catalyst 3560X-48PF-S Switch
Catalyst 3560X-48T-E Switch
Catalyst 3560X-48T-L Switch
Catalyst 3560X-48T-S Switch
Catalyst 3560X-48U-E Switch
Catalyst 3560X-48U-L Switch
Catalyst 3560X-48U-S Switch
Catalyst 3750 Metro 24-AC Switch
Catalyst 3750 Metro 24-DC Switch
Catalyst 3750-24FS Switch
Catalyst 3750-24PS Switch
Catalyst 3750-24TS Switch
Catalyst 3750-48PS Switch
Catalyst 3750-48TS Switch
Catalyst 3750E-24PD-E Switch
Catalyst 3750E-24PD-S Switch
Catalyst 3750E-24TD-E Switch
Catalyst 3750E-24TD-S Switch
Catalyst 3750E-48PD-E Switch
Catalyst 3750E-48PD-EF Switch
Catalyst 3750E-48PD-S Switch
Catalyst 3750E-48PD-SF Switch
Catalyst 3750E-48TD-E Switch
Catalyst 3750E-48TD-S Switch
Catalyst 3750G-12S Switch
Catalyst 3750G-12S-SD Switch
Catalyst 3750G-16TD Switch
Catalyst 3750G-24PS Switch
Catalyst 3750G-24T Switch
Catalyst 3750G-24TS Switch
Catalyst 3750G-24TS-1U Switch
Catalyst 3750G-48PS Switch
Catalyst 3750G-48TS Switch
Catalyst 3750V2-24FS Switch
Catalyst 3750V2-24PS Switch
Catalyst 3750V2-24TS Switch
Catalyst 3750V2-48PS Switch
Catalyst 3750V2-48TS Switch
Catalyst 3750X-12S-E Switch
Catalyst 3750X-12S-S Switch
Catalyst 3750X-24P-E Switch
Catalyst 3750X-24P-L Switch
Catalyst 3750X-24P-S Switch
Catalyst 3750X-24S-E Switch
Catalyst 3750X-24S-S Switch
Catalyst 3750X-24T-E Switch
Catalyst 3750X-24T-L Switch
Catalyst 3750X-24T-S Switch
Catalyst 3750X-24U-E Switch
Catalyst 3750X-24U-L Switch
Catalyst 3750X-24U-S Switch
Catalyst 3750X-48P-E Switch
Catalyst 3750X-48P-L Switch
Catalyst 3750X-48P-S Switch
Catalyst 3750X-48PF-E Switch
Catalyst 3750X-48PF-L Switch
Catalyst 3750X-48PF-S Switch
Catalyst 3750X-48T-E Switch
Catalyst 3750X-48T-L Switch
Catalyst 3750X-48T-S Switch
Catalyst 3750X-48U-E Switch
Catalyst 3750X-48U-L Switch
Catalyst 3750X-48U-S Switch
Catalyst 4000 Supervisor Engine I
Catalyst 4000/4500 Supervisor Engine IV
Catalyst 4000/4500 Supervisor Engine V
Catalyst 4500 Series Supervisor Engine II-Plus
Catalyst 4500 Series Supervisor Engine II-Plus-TS
Catalyst 4500 Series Supervisor Engine V-10GE
Catalyst 4500 Series Supervisor II-Plus-10GE
Catalyst 4500 Supervisor Engine 6-E
Catalyst 4500 Supervisor Engine 6L-E
Catalyst 4900M Switch
Catalyst 4928 10 Gigabit Ethernet Switch
Catalyst 4948 10 Gigabit Ethernet Switch
Catalyst 4948 Switch
Catalyst 4948E Ethernet Switch
Catalyst 4948E-F Ethernet Switch
Catalyst Blade Switch 3020 for HP
Catalyst Blade Switch 3030 for Dell
Catalyst Blade Switch 3032 for Dell M1000E
Catalyst Blade Switch 3040 for FSC
Catalyst Blade Switch 3120 for HP
Catalyst Blade Switch 3120X for HP
Catalyst Blade Switch 3130 for Dell M1000E
Catalyst C2928-24LT-C Switch
Catalyst C2928-48TC-C Switch
Catalyst Switch Module 3012 for IBM BladeCenter
Catalyst Switch Module 3110 for IBM BladeCenter
Catalyst Switch Module 3110X for IBM BladeCenter
Embedded Service 2020 24TC CON B Switch
Embedded Service 2020 24TC CON Switch
Embedded Service 2020 24TC NCP B Switch
Embedded Service 2020 24TC NCP Switch
Embedded Service 2020 CON B Switch
Embedded Service 2020 CON Switch
Embedded Service 2020 NCP B Switch
Embedded Service 2020 NCP Switch
Enhanced Layer 2 EtherSwitch Service Module
Enhanced Layer 2/3 EtherSwitch Service Module
Gigabit Ethernet Switch Module (CGESM) for HP
IE 2000-16PTC-G Industrial Ethernet Switch
IE 2000-16T67 Industrial Ethernet Switch
IE 2000-16T67P Industrial Ethernet Switch
IE 2000-16TC Industrial Ethernet Switch
IE 2000-16TC-G Industrial Ethernet Switch
IE 2000-16TC-G-E Industrial Ethernet Switch
IE 2000-16TC-G-N Industrial Ethernet Switch
IE 2000-16TC-G-X Industrial Ethernet Switch
IE 2000-24T67 Industrial Ethernet Switch
IE 2000-4S-TS-G Industrial Ethernet Switch
IE 2000-4T Industrial Ethernet Switch
IE 2000-4T-G Industrial Ethernet Switch
IE 2000-4TS Industrial Ethernet Switch
IE 2000-4TS-G Industrial Ethernet Switch
IE 2000-8T67 Industrial Ethernet Switch
IE 2000-8T67P Industrial Ethernet Switch
IE 2000-8TC Industrial Ethernet Switch
IE 2000-8TC-G Industrial Ethernet Switch
IE 2000-8TC-G-E Industrial Ethernet Switch
IE 2000-8TC-G-N Industrial Ethernet Switch
IE 3000-4TC Industrial Ethernet Switch
IE 3000-8TC Industrial Ethernet Switch
IE-3010-16S-8PC Industrial Ethernet Switch
IE-3010-24TC Industrial Ethernet Switch
IE-4000-16GT4G-E Industrial Ethernet Switch
IE-4000-16T4G-E Industrial Ethernet Switch
IE-4000-4GC4GP4G-E Industrial Ethernet Switch
IE-4000-4GS8GP4G-E Industrial Ethernet Switch
IE-4000-4S8P4G-E Industrial Ethernet Switch
IE-4000-4T4P4G-E Industrial Ethernet Switch
IE-4000-4TC4G-E Industrial Ethernet Switch
IE-4000-8GS4G-E Industrial Ethernet Switch
IE-4000-8GT4G-E Industrial Ethernet Switch
IE-4000-8GT8GP4G-E Industrial Ethernet Switch
IE-4000-8S4G-E Industrial Ethernet Switch
IE-4000-8T4G-E Industrial Ethernet Switch
IE-4010-16S12P Industrial Ethernet Switch
IE-4010-4S24P Industrial Ethernet Switch
IE-5000-12S12P-10G Industrial Ethernet Switch
IE-5000-16S12P Industrial Ethernet Switch
ME 4924-10GE Switch
RF Gateway 10
SM-X Layer 2/3 EtherSwitch Service Module

The vendor has assigned bug ID CSCvd48893 to this vulnerability.

[Editor's note: This vulnerability is included in the WikiLeaks "Vault 7" exploit collection.]

Impact:   A remote user can cause the target system to reload.

A remote user can execute arbitrary code with elevated privileges on the target system.

Solution:   The vendor has issued a fix (15.2(5.5.15i)E2).

The vendor advisory is available at:

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170317-cmp

Vendor URL:  tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170317-cmp (Links to External Site)
Cause:   Access control error

Message History:   None.


 Source Message Contents



[Original Message Not Available for Viewing]


Go to the Top of This SecurityTracker Archive Page





Home   |    View Topics   |    Search   |    Contact Us

Copyright 2017, SecurityGlobal.net LLC