Security News > 2020 > February > 5 High Impact Flaws Affect Cisco Routers, Switches, IP Phones and Cameras

Four of the five high-severity bugs are remote code execution issues affecting Cisco routers, switches, and IP cameras, whereas the fifth vulnerability is a denial-of-service issue affecting Cisco IP phones.

Collectively dubbed 'CDPwn,' the reported vulnerabilities reside in the various implementations of the Cisco Discovery Protocol that comes enabled by default on virtually all Cisco devices and can not be turned OFF. Cisco Discovery Protocol is an administrative protocol that works at Layer 2 of the Internet Protocol stack.

Cisco NX-OS Stack Overflow in the Power Request TLV. Cisco IOS XR Format String vulnerability in multiple TLVs. Cisco IP Phones Stack Overflow in PortID TLV. Cisco IP Cameras Heap Overflow in DeviceID TLV. Cisco FXOS, IOS XR, and NX-OS Resource Exhaustion in the Addresses TLV. To be noted, since CDP is a Data Link layer 2 protocol that can't cross the boundaries of a local area network, an attacker first needs to be on the same network to leverage CDPwn vulnerabilities.

After gaining an initial foothold in a targeted network using separate vulnerabilities, attackers can exploit CDPwn against network switches to break network segmentation and move laterally across the corporate networks to other sensitive systems and data.

Exfiltrate sensitive corporate data flowing through the corporate network's switches and routers.

News URL

http://feedproxy.google.com/~r/TheHackersNews/~3/4Cn_98zo33k/cisco-cdp-vulnerabilities.html