14 matches found
Cisco IOS Telnet Denial of Service
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Cisco IOS Telnet Denial of Service', 'Description' = %q This module triggers a Denial of Service condition in the Cisco IOS telnet service...
Cisco IOS Remote Code Execution (CVE-2017-3881) - Ver2
A remote code execution vulnerability exists in Cisco IOS. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Metasploit Wrapup
Metasploit Hackathon We were happy to host the very first Metasploit framework open source hackathon this past week in the Rapid7 Austin. Eight Metasploit hackers from outside of Rapid7 joined forces with the in-house team and worked on a lot of great projects, small and large. @bcook started the...
Cisco Catalyst 2960 switch in CVE-2017-3881 vulnerability analysis-vulnerability warning-the black bar safety net
! 2017 3 December 17, Cisco official website announced that the Cisco IOS&IOS-XE Software Cluster Management ProtocolCluster Management Protocolthe presence of a remote code execution vulnerability, CVE-2017-3881-in. The vulnerability is Cisco in the study of the CIA leak of the document“Vault 7”...
Cisco Catalyst 2960 IOS 12.2(55)SE11 Remote Code Execution
!/usr/bin/python Exploit Title: Cisco Catalyst 2960 - Buffer Overflow Exploit Details: https://artkond.com/2017/04/10/cisco-catalyst-remote-code-execution/ Date: 04.10.2017 Exploit Author: https://twitter.com/artkond Vendor Homepage: https://www.cisco.com/ Version: IOS version...
Cisco Catalyst 2960 IOS 12.2(55)SE11 - 'ROCEM' Remote Code Execution
!/usr/bin/python Exploit Title: Cisco Catalyst 2960 - Buffer Overflow Exploit Details: https://artkond.com/2017/04/10/cisco-catalyst-remote-code-execution/ Date: 04.10.2017 Exploit Author: https://twitter.com/artkond Vendor Homepage: https://www.cisco.com/ Version: IOS version...
Cisco Catalyst 2960 IOS 12.2(55)SE11 - ROCEM Remote Code Execution
Cisco Catalyst 2960 IOS 12.255SE11 - ROCEM Remote Code Execution !/usr/bin/python Exploit Title: Cisco Catalyst 2960 - Buffer Overflow Exploit Details: https://artkond.com/2017/04/10/cisco-catalyst-remote-code-execution/ Date: 04.10.2017 Exploit Author: https://twitter.com/artkond Vendor Homepage...
Cisco Catalyst 2960 IOS 12.2(55)SE11 - ROCEM Remote Code Execution Exploit
Exploit for hardware platform in category remote exploits !/usr/bin/python Exploit Title: Cisco Catalyst 2960 - Buffer Overflow Exploit Details: https://artkond.com/2017/04/10/cisco-catalyst-remote-code-execution/ Date: 04.10.2017 Exploit Author: https://twitter.com/artkond Vendor Homepage:...
CVE-2017-3881
creationtimestamp| type| source ---|---|--- 2017-03-29 08:04:52+00:00| seen| https://t.me/webamoozir/1465 2017-04-10 10:20:32+00:00| published-proof-of-concept| https://t.me/canyoupwnme/1171 2017-04-12 14:54:05+00:00| published-proof-of-concept| https://t.me/HackerOne/616 2018-05-29 15:50:33+00:0...
Cisco IOS XE Cluster Management Protocol Telnet Option Handling RCE (cisco-sa-20170317-cmp)
According to its self-reported version and configuration, the Cisco IOS XE software running on the remote device is affected by a remote code execution vulnerability in the Cluster Management Protocol CMP subsystem due to improper handling of CMP-specific Telnet options. An unauthenticated, remot...
Cisco IOS Cluster Management Protocol Telnet Option Handling RCE (cisco-sa-20170317-cmp)
According to its self-reported version and configuration, the Cisco IOS software running on the remote device is affected by a remote code execution vulnerability in the Cluster Management Protocol CMP subsystem due to improper handling of CMP-specific Telnet options. An unauthenticated, remote...
Cisco IOS XE Software Cluster Management Protocol Remote Code Execution Vulnerability
A vulnerability in the Cisco Cluster Management Protocol CMP processing code in Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause a reload of an affected device or remotely execute code with elevated privileges. SPDX-FileCopyrightText: 2017 Greenbone AG Some text...
CVE-2017-3881
A vulnerability in the Cisco Cluster Management Protocol CMP processing code in Cisco IOS and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause a reload of an affected device or remotely execute code with elevated privileges. The Cluster Management Protocol utilizes...
CVE-2017-3881
CVE-2017-3881 is a Cisco IOS/IOS XE vulnerability in the Cluster Management Protocol (CMP) handling. Two factors enable exploitation: (1) CMP-specific Telnet options were not restricted to internal cluster communications and could be processed over any Telnet session; (2) malformed CMP-specific T...