[Wired] Cisco Flaws Put Millions of Workplace Devices at Risk - Overclock.net - An Overclocking Community
Forum Jump: 

[Wired] Cisco Flaws Put Millions of Workplace Devices at Risk

Thread Tools
post #1 of 3 (permalink) Old 02-05-2020, 04:59 PM - Thread Starter
New to Overclock.net
Join Date: Feb 2020
Location: OKC
Posts: 18
Rep: 3 (Unique: 3)
[Wired] Cisco Flaws Put Millions of Workplace Devices at Risk

These particular vulnerabilities, found by the enterprise security firm Armis, can also break out of the "segmentation" that IT managers use to silo different parts of a network, like a guest Wi-Fi, to cause widespread issues. Attackers could target a vulnerable Cisco network switch—which moves data around an internal network—to intercept large amounts of unencrypted, internal information and move between different parts of a target's system. Attackers could use related flaws, also disclosed by Armis, to attack batches of Cisco devices at once—like all the desk phones or all the webcams—to shut them down or turn them into eyes and ears inside a target organization.

“Network segmentation is a key way to secure IoT devices,” says Ben Seri, vice president of research at Armis. “But sometimes we can poke holes. And we know that enterprise devices are being targeted in the world. If they have this type of vulnerability, unfortunately that can be very powerful for a group like an APT.”

The flaws lie in the implementation of a mechanism known as the Cisco Discovery Protocol, which allows Cisco products to broadcast their identities to each other within a private network. CDP is part of a network's "Layer 2," which establishes the foundational data link between network devices. All devices use some sort of identity broadcasting mechanism, but CDP is Cisco’s proprietary version.
Source: https://www.wired.com/story/cisco-cd...prise-hacking/
NightShade00013 is offline  
Sponsored Links
post #2 of 3 (permalink) Old 02-06-2020, 07:23 AM
New to Overclock.net
Liranan's Avatar
Join Date: Nov 2010
Location: Soviet China... Oh wait..
Posts: 8,766
Rep: 616 (Unique: 300)
Not surprising, considering the spyware that the NSA have been installing on Cisco routers, causing a lot of countries to move away to other brands.

Originally Posted by faraz1729 go_quote.gif
Haha, Liranan, you creep.

Tacitus - The more corrupt the state, the more numerous the laws

Only when the last tree has died and the last river been poisoned and the last fish been caught will we realise we cannot eat money. - Cree Indian Proverb
Liranan is offline  
post #3 of 3 (permalink) Old 02-06-2020, 10:51 AM
New to Overclock.net
Join Date: Jul 2019
Posts: 8
Rep: 0
It's also not surprising because it's CDP. A security vulnerability in an auto discovery protocol. Shocker. Admittedly, I'm no expert on CDP or Cisco. I've dabbled with old equipment and had limited exposure to CDP though. For whatever reason, the first thing I felt creeping into the back of my mind with it was security vulnerability. If memory serves, it's a great way to collect info on other devices from a given device. Assuming it's enabled anyway.
Iridium31 is offline  

Quick Reply

Register Now

In order to be able to post messages on the Overclock.net - An Overclocking Community forums, you must first register.
Please enter your desired user name, your email address and other required details in the form below.
User Name:
If you do not want to register, fill this field only and the name will be used as user name for your post.
Please enter a password for your user account. Note that passwords are case-sensitive.
Confirm Password:
Email Address
Please enter a valid email address for yourself.
Email Address:


Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
Thread Tools
Show Printable Version Show Printable Version
Email this Page Email this Page

Forum Jump: 

Posting Rules  
You may post new threads
You may post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are Off
Pingbacks are Off
Refbacks are Off