Possible destructive attack on Cisco IOS leveraging CVE-2018-0171: https://otx.alienvault.com/pulse/5ac8c6bca1061f185097cdc6 … Message reads: "Don't mess with our elections.... -JHT usafreedom_jht@tutanota.com"
-
Why would you leverage CVE-2018-0171, when the "smart-install" service itself allows config modification/code execution without authentication? CVE-2018-0171 is pretty hardcore binary vuln (quite possibly firmware dependent). Isn't this an overkill? @_embedi_
No idea if CVE-2018-0171 is actually being used in these attacks to be honest. Likely related: 1 - https://twitter.com/Khoramyar/status/982351855840718850 … 2 -https://twitter.com/CatVsHumanity/status/982530198158630912 …
-
-
Just saying.. research on smart-install misuse has been available since 2016 -https://dsec.ru/upload/medialibrary/a46/a46a7d07ce67d5ce24c8c295924937ac.pdf … as well as the tool to exploit ithttps://github.com/Sab0tag3d/SIET
-
Oh, very interesting - thanks Artem!
End of conversation
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.