HKCert
  

Cisco IOS and IOS XE Multiple Vulnerabilities

Release Date: 30 / 06 / 2017
Last Update: 30 / 06 / 2017
Risk Level:  


Multiple vulnerabilities were identified in Cisco IOS/ IOS XE. A remote authenticated user can execute arbitrary code on the target system.

 

Note: No patch is currently available but there exists a workaround.

  • Remote Code Execution
  • All versions of SNMP (Versions 1, 2c, and 3)
  • Devices configured with any of the following MIBs are vulnerable:
    • ADSL-LINE-MIB
    • ALPS-MIB
    • CISCO-ADSL-DMT-LINE-MIB
    • CISCO-BSTUN-MIB
    • CISCO-MAC-AUTH-BYPASS-MIB
    • CISCO-SLB-EXT-MIB
    • CISCO-VOICE-DNIS-MIB
    • CISCO-VOICE-NUMBER-EXPANSION-MIB
    • TN3270E-RT-MIB