Cisco IOS HTTP Server code injection/execution vulnerability

Paul AsadoorianNovember 30, 2005

“It has been identified a vulnerability in the Cisco IOS Web Server. An attacker can inject arbitrary code in some of the dynamically generated web pages. To succesfully exploit the vulnerability the attacker only needs to know the IP of the Cisco. THERE’S NO NEED TO HAVE ACCESS TO THE WEB SERVER! Once the code has been inyected, attacker must wait until the admin browses some of the affected web pages.”

This appears to be a posting by someone, with very poor english, who has found a new vulnerability in Cisco IOS. This has not yet been confirmed, but if you are using HTTP to manage your Cisco equipment you should switch to SSH. So many organizations still use TELNET to manage their network infrastructure. This greatly contributes to the “Hard outside, soft and chewy inside” theory of network security.
SSH + TACACS = Good
TELNET + Enable = Bad

Partial Advisory

.com

Paul Asadoorian

Paul Asadoorian is currently the Principal Security Evangelist for Eclypsium, focused on firmware and supply chain security awareness. Paul’s passion for firmware security extends back many years to the WRT54G hacking days and reverse engineering firmware on IoT devices for fun. Paul and his long-time podcast co-host Larry Pesce co-authored the book “WRTG54G Ultimate Hacking” in 2007, which fueled the firmware hacking fire even more. Paul has worked in technology and information security for over 20 years, holding various security and engineering roles in a lottery company, university, ISP, independent penetration tester, and security product companies such as Tenable. In 2005 Paul founded Security Weekly, a weekly podcast dedicated to hacking and information security. In 2020 Security Weekly was acquired by the Cyberrisk Alliance. Paul is still the host of one of the longest-running security podcasts, Paul’s Security Weekly, he enjoys coding in Python & telling everyone he uses Linux.

Vulnerability Management

Ukrainian documents laced with old malware exposed

SC StaffApril 24, 2024

CyberScoop reports that over 100 Ukrainian local government and police documents uploaded to VirusTotal in February were discovered to have been infected with the OfflRouter malware, which dates back to 2015 and could only spread through already compromised files and removable media devices.

Google Chrome application icon on Apple iPhone X screen close-up. Google Chrome app icon.

Vulnerability Management

Google patches critical type-confusion flaw in Chrome browser

Steve ZurierApril 24, 2024

Security pros say there’s a high potential that attackers could launch arbitrary code execution.

Network Security

Global cyber incident detection capabilities improve

SC StaffApril 24, 2024

Organizations around the world have improved their cyber incident detection capabilities last year, with median dwell times dropping to 10 days, which is the lowest in a decade, and internal compromise detection rates rising from 37% in 2022 to 46% in 2023, SiliconAngle reports.

Related Events

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

Cisco IOS HTTP Server code injection/execution vulnerability

Related

Ukrainian documents laced with old malware exposed

Google patches critical type-confusion flaw in Chrome browser

Global cyber incident detection capabilities improve

Related Events

Exposure management: How organizations can use it to build cyber resilience

Vulnerability management: Finding and fixing fatal flaws

Reducing silos between Developers and AppSec in your Software Supply Chain with Snyk and ServiceNow

Get daily email updates