安全研究
安全漏洞
Cisco FXOS/IOS XR/NX-OS Software CDP协议远程代码执行及拒绝服务安全漏洞(CVE-2020-3120)
发布日期:2020-02-04
更新日期:2020-02-06
受影响系统:
Cisco FXOS/IOS XR/NX-OS Software UCS 6400 Series Fabric Interco描述:
Cisco FXOS/IOS XR/NX-OS Software UCS 6300 Series Fabric Interco
Cisco FXOS/IOS XR/NX-OS Software UCS 6200 Series Fabric Interco
Cisco FXOS/IOS XR/NX-OS Software Nexus 9000 Series Switches in
Cisco FXOS/IOS XR/NX-OS Software Nexus 9000 Series Fabric Switc
Cisco FXOS/IOS XR/NX-OS Software Nexus 7000 Series Switches
Cisco FXOS/IOS XR/NX-OS Software Nexus 6000 Series Switches
Cisco FXOS/IOS XR/NX-OS Software Nexus 5600 Platform Switches
Cisco FXOS/IOS XR/NX-OS Software Nexus 5500 Platform Switches
Cisco FXOS/IOS XR/NX-OS Software Nexus 3000 Series Switches
Cisco FXOS/IOS XR/NX-OS Software Nexus 1000V Switch for VMware
Cisco FXOS/IOS XR/NX-OS Software Nexus 1000V Switch for Microso
Cisco FXOS/IOS XR/NX-OS Software Nexus 1000 Virtual Edge for VM
Cisco FXOS/IOS XR/NX-OS Software Network Convergence System (NC
Cisco FXOS/IOS XR/NX-OS Software Network Convergence System (NC
Cisco FXOS/IOS XR/NX-OS Software Network Convergence System (NC
Cisco FXOS/IOS XR/NX-OS Software Network Convergence System (NC
Cisco FXOS/IOS XR/NX-OS Software Network Convergence System (NC
Cisco FXOS/IOS XR/NX-OS Software Network Convergence System (NC
Cisco FXOS/IOS XR/NX-OS Software MDS 9000 Series Multilayer Swi
Cisco FXOS/IOS XR/NX-OS Software IOS XRv 9000 Router
Cisco FXOS/IOS XR/NX-OS Software Firepower 9300 Security Applia
Cisco FXOS/IOS XR/NX-OS Software Firepower 4100 Series
Cisco FXOS/IOS XR/NX-OS Software Carrier Routing System (CRS)
Cisco FXOS/IOS XR/NX-OS Software ASR 9000 Series Aggregation Se
CVE(CAN) ID: CVE-2020-3120
CDP 协议是使思科设备能够在与它们直连的设备之间分享有关操作系统软件版本,以及IP地址,硬件平台等相关信息。
Cisco FXOS, IOS XR, NX-OS Software在CDP协议实现中存在安全漏洞,此漏洞源于CDP消息处理中缺少输入检查,CDP是第二层协议,要利用此漏洞,攻击者需要位于与受影响设备相同的广播域中,未经身份验证的攻击者可利用此漏洞远程执行代码或者造成受影响设备重载。
<*来源:Ben Seri
链接:https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20200205-fxnxos-iosxr
*>
建议:
厂商补丁:
Cisco
-----
Cisco已经为此发布了一个安全公告(cisco-sa-20200205-fxnxos-iosxr-cdp-dos)以及相应补丁:
cisco-sa-20200205-fxnxos-iosxr-cdp-dos:Cisco FXOS, IOS XR, and NX-OS Software Cisco Discovery Protocol Denial of Service Vulnerability
链接:https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20200205-fxnxos-iosxr-cdp-dos
浏览次数:1471
严重程度:0(网友投票)
绿盟科技给您安全的保障