Cisco Security Vulnerability Thread.

dbeato

@travisdh1 You would love this one
https://techcrunch.com/2018/11/01/bleedingbit-security-flaws-bluetooth-wireless-networks/

travisdh1

@dbeato said in Cisco Security Vulnerability Thread.:

@travisdh1 You would love this one
https://techcrunch.com/2018/11/01/bleedingbit-security-flaws-bluetooth-wireless-networks/

I saw that headline, but didn't read the article. I'm not surprised that Cisco is one of the vulnerable brands.

travisdh1

"Cisco Adaptive Security Appliance Software and Cisco Firepower Threat Defense Software Denial of Service Vulnerability"

Only a denial of service possibility. Did I forget to mention it's in the software that is supposed to prevent that sort of thing?

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20181031-asaftd-sip-dos

nadnerB

https://arstechnica.com/information-technology/2018/11/bluetooth-bugs-bite-millions-of-wi-fi-aps-from-cisco-meraki-and-aruba/

Wi-Fi access points sold by Cisco, Meraki, and Aruba have two critical vulnerabilities being patched that could allow hackers to run malware inside the sensitive networks that use the gear. While the flaws open corporate networks to some scary attacks, the real-world likelihood of them being exploited is debatable.

travisdh1

3 new vulnerabilities this morning.

Remote code execution
Cisco Stealthwatch Management Console Authentication Bypass Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20181107-smc-auth-bypass

2nd remote code execution.
Cisco Unity Express Arbitrary Command Execution Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20181107-cue

And a Meraki local privilege escalation for good measure.
Cisco Meraki Local Status Page Privilege Escalation Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20181107-meraki

scottalanmiller

@travisdh1 wow, that's out of control.

travisdh1

They made it more than a month! It must be a record.

Web based privilege escalation on ASA boxes.
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20181219-asa-privesc

travisdh1

Two Cisco ESA (Email Security Gateway) DDOS vulnerabilities today:
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190109-esa-dos
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190109-esa-url-dos

black3dynamite

@travisdh1 Is your hatred towards Ubuntu the same with Cisco? The fact that you created a thread just for it makes me think so.

travisdh1

@black3dynamite said in Cisco Security Vulnerability Thread.:

@travisdh1 Is your hatred towards Ubuntu the same with Cisco? The fact that you created a thread just for it makes me think so.

I created this thread because of all the people that were claiming that Cisco does not have security issues, when we know that assertion is not true. It's really more about documenting what we already know than an active "I don't like Cisco".

That said, it is true, I don't like Cisco. If they made products that were priced right and not an active security breach waiting to happen.

dbeato

@black3dynamite said in Cisco Security Vulnerability Thread.:

@travisdh1 Is your hatred towards Ubuntu the same with Cisco? The fact that you created a thread just for it makes me think so.

Lol, I wouldn't classify it as much but a lot of people do hate Ubuntu/Debian... unwarranted in my opinion but hey what can I say, I am biased

JaredBusch

@dbeato said in Cisco Security Vulnerability Thread.:

@black3dynamite said in Cisco Security Vulnerability Thread.:

@travisdh1 Is your hatred towards Ubuntu the same with Cisco? The fact that you created a thread just for it makes me think so.

Lol, I wouldn't classify it as much but a lot of people do hate Ubuntu/Debian... unwarranted in my opinion but hey what can I say, I am biased

I hate Ubuntu, but Debian is fine.

dbeato

@JaredBusch said in Cisco Security Vulnerability Thread.:

@dbeato said in Cisco Security Vulnerability Thread.:

@black3dynamite said in Cisco Security Vulnerability Thread.:

@travisdh1 Is your hatred towards Ubuntu the same with Cisco? The fact that you created a thread just for it makes me think so.

Lol, I wouldn't classify it as much but a lot of people do hate Ubuntu/Debian... unwarranted in my opinion but hey what can I say, I am biased

I hate Ubuntu, but Debian is fine.

Point taken.

dafyre

@travisdh1 said in Cisco Security Vulnerability Thread.:

Two Cisco ESA (Email Security Gateway) DDOS vulnerabilities today:
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190109-esa-dos
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190109-esa-url-dos

At least these weren't hard coded passwords!

travisdh1

@dafyre said in Cisco Security Vulnerability Thread.:

@travisdh1 said in Cisco Security Vulnerability Thread.:

Two Cisco ESA (Email Security Gateway) DDOS vulnerabilities today:
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190109-esa-dos
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190109-esa-url-dos

At least these weren't hard coded passwords!

That we know of!

travisdh1

Only 23 vulnerabilities announced yesterday. I don't have the time to weed through them all!

https://tools.cisco.com/security/center/publicationListing.x?product=Cisco&sort=-day_sir#~Vulnerabilities

travisdh1

@travisdh1 said in Cisco Security Vulnerability Thread.:

Only 23 vulnerabilities announced yesterday. I don't have the time to weed through them all!

https://tools.cisco.com/security/center/publicationListing.x?product=Cisco&sort=-day_sir#~Vulnerabilities

Turns out, one is significantly worse than the unpublicized admin credentials. Their SBS line has the default admin and password account active until you create another admin account. Published admin credentials. FFS Cisco.

travisdh1

Cisco Network Assurance Engine CLI default user/password. At this point, I'm assuming anything Cisco has an unpublished admin user/password somewhere!

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190212-nae-dos

dafyre

@travisdh1 said in Cisco Security Vulnerability Thread.:

Cisco Network Assurance Engine CLI default user/password. At this point, I'm assuming anything Cisco has an unpublished admin user/password somewhere!

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190212-nae-dos

This one seems like an actual bug, and not a hard coded password.

From what I read, the TL;DR version is that when you change your web interface password, it doesn't change your CLI password.

travisdh1

@dafyre said in Cisco Security Vulnerability Thread.:

@travisdh1 said in Cisco Security Vulnerability Thread.:

Cisco Network Assurance Engine CLI default user/password. At this point, I'm assuming anything Cisco has an unpublished admin user/password somewhere!

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190212-nae-dos

This one seems like an actual bug, and not a hard coded password.

From what I read, the TL;DR version is that when you change your web interface password, it doesn't change your CLI password.

I didn't get a chance to do more than glance at this one. That's actually worse. How do you screw up a credential system that bad?