27
Cisco Catalyst http password download
Network devices
2003/11/14
Marc Ruef
marc dot ruef at computec dot ch
http://www.computec.ch
computec.ch
Marc Ruef
marc dot ruef at computec dot ch
http://www.computec.ch
computec.ch
2004/11/14
2.0
Corrected the plugin structure and added the accuracy values in 1.4. Improved the pattern matching and introduced the plugin changelog in 2.0
tcp
80
open|send GET /exec/show/config/cr HTTP/1.0\n\n|sleep|close|pattern_exists enable
95
Plugin is completly untested!
Cisco Systems
info at cisco dot com
http://www.cisco.com
Cisco Catalyst router
Missing Authentication
On Cisco Catalyst router an attacker may gain sensitive data requesting the file /exec/show/config/cr on the web port.
Upgrade your Cisco firmware and filter incoming traffic on port tcp/80. As workaround (disabling the web service) you could add the rule set web disabled, write, reboot into your device.
15 minutes
Yes
http://www.securityfocus.com/bid/1846/exploit/
Yes
No
High
7
6
8
7
High
Nessus is also able to do the same check.
CVE-2000-0945
1846
10545
Hacking Exposed: Network Security Secrets & Solutions, Stuart McClure, Joel Scambray and George Kurtz, February 25, 2003, 4th Edition, McGraw-Hill Osborne Media, ISBN 0072227427
http://www.computec.ch
