Business

News

 
More...

Alerts

 
More...

Events

 
More...
 
     
 

Cisco IOS and IOS XE Software SSH Version 2 RSA-Based User Authentication Bypass Vulnerability

 

Systems Affected


Cisco IOS version 12.0 to 15.5 and Cisco IOS XE version 3.6 to 3.14 Software

Threat Level


High


Overview


Vulnerability has been reported in Cisco IOS and Cisco IOS XE Software which could allow a remote authenticated attacker to bypass user authentication and access the device with the privileges of the user configured for the Virtual teletype (VTY) line.


Description


This vulnerability occurs due to flaw in the implementation of the SSHv2 public key RSA user authentication. A remote attacker could exploit this vulnerability by sending a specially crafted RSA private key to bypass authentication and access the targeted device with the privileges of the user configured for the Virtual teletype (VTY) line.

Successful exploitation of this vulnerability could allow a remote attacker to bypass user authentication and log in with the privileges of the user or with the privileges configured for VTY line.


Impact



Solution/ Workarounds


Apply appropriate updates as mentioned in CISCO advisory
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150923-sshpk


References


http://www.cert-in.org.in/s2cMainServlet?pageid=PUBVLNOTES01&VLCODE=CIVN-2015-0247


Disclaimer


The information provided herein is on "as is" basis, without warranty of any kind.


 
     

© Copyright Sri Lanka CERT|CC. All Rights Reserved.