SecurityTracker.com
Keep Track of the Latest Vulnerabilities
with SecurityTracker!
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 
Sign Up
Sign Up for Your FREE Weekly SecurityTracker E-mail Alert Summary
Instant Alerts
Buy our Premium Vulnerability Notification Service to receive customized, instant alerts
Affiliates
Put SecurityTracker Vulnerability Alerts on Your Web Site -- It's Free!
Partners
Become a Partner and License Our Database or Notification Service
Report a Bug
Report a vulnerability that you have found to SecurityTracker
bugs
@
securitytracker.com





Category:   Application (Generic)  >   Cisco Router Web Setup Vendors:   Cisco
Cisco Router Web Setup Tool Uses an Unsafe IOS Router Configuration By Default
SecurityTracker Alert ID:  1016476
SecurityTracker URL:  http://securitytracker.com/id/1016476
CVE Reference:   CVE-2006-3595   (Links to External Site)
Updated:  Aug 10 2006
Original Entry Date:  Jul 12 2006
Impact:   Root access via network
Fix Available:  Yes  Vendor Confirmed:  Yes  
Version(s): prior to 3.3.0 build 31
Description:   A vulnerability was reported in Cisco SOHO and Cisco 800 Series routers configured with the Cisco Router Web Setup tool. The tool uses an unsafe default configuration.

The tool sets up the router without an enable password and without an enable secret command on the router. As a result, a remote user can access the Cisco IOS HTTP server interface without authentication. The remote user can obtain privilege level 15 access (the highest).

The following Cisco IOS routers may be affected:

Cisco 806
Cisco 826
Cisco 827
Cisco 827H
Cisco 827-4v
Cisco 828
Cisco 831
Cisco 836
Cisco 837
Cisco SOHO 71
Cisco SOHO 76
Cisco SOHO 77
Cisco SOHO 77H
Cisco SOHO 78
Cisco SOHO 91
Cisco SOHO 96
Cisco SOHO 97

Cisco has assigned Cisco bug ID CSCsa78190 to this vulnerability.
Impact:   The tool may configure the router so that a remote user can gain privileged access to the router without authenticating.
Solution:   Cisco has issued a fixed version (3.3.0 build 31) for new installations, available at:

http://www.cisco.com/pcgi-bin/tablebuild.pl/crws

Devices shipped from Cisco manufacturing on or after August 8, 2006, include the fixed CRWS version 3.3.0 build 31.

The Cisco advisory is available at:

http://www.cisco.com/warp/public/707/cisco-sa-20060712-crws.shtml
Vendor URL:  www.cisco.com/warp/public/707/cisco-sa-20060712-crws.shtml (Links to External Site)
Cause:   Configuration error
Underlying OS:  

Message History:   None.

 Source Message Contents
Date:  Wed, 12 Jul 2006 13:04:23 -0400
Subject:  Cisco Security Advisory: Cisco Router Web Setup Ships with Insecure Default IOS Configuration


http://www.cisco.com/warp/public/707/cisco-sa-20060712-crws.shtml


Go to the Top of This SecurityTracker Archive Page



Home   |    View Topics   |    Search   |    Contact Us

Copyright 2013, SecurityGlobal.net LLC