Stories
Slash Boxes
Comments

SoylentNews is people

posted by on Wednesday March 22 2017, @06:47AM   Printer-friendly
from the CIA-has-the-best-0-days dept.

It looks like Cisco won't be chasing up a partnership with WikiLeaks: it's combing the "Vault7" documents itself, and has turned up an IOS / IOS XE bug in more than 300 of its switch models.

The vulnerability is in the Cisco Cluster Management Protocol (CMP) in IOS and IOS XE. The protocol passes around information about switch clusters using either Telnet or SSH.

The bug is in the default configuration of affected devices, even if the user doesn't have switch clusters configured, and can be exploited over either IPv4 or IPv6.

It's a two-fold bug: first, the protocol doesn't restrict CMP-specific Telnet to local communications, instead processing commands over "any Telnet connection to an affected device"; and second, malformed CMP-specific Telnet options are incorrectly processed.

[...] Cisco's advisory doesn't tell us if it's aware of exploits using the flaw. If they are discovered, this is very substantial news because The Reg expects there are tens of thousands, if not hundreds of thousands, of these devices installed around the world. And all look to have been at the CIA's mercy for an unknown period of time.

-- submitted from IRC


Original Submission

Related Stories

U.S. Justice Department Considering Charges Against Julian Assange 41 comments

U.S. Department of Justice prosecutors may bring charges against WikiLeaks and Julian Assange soon:

Two media reports say U.S. prosecutors are preparing or closely considering charges against the anti-secrecy group WikiLeaks, including its founder Julian Assange, for revealing sensitive government secrets. CNN (http://cnn.it/2pINsBT) reported Thursday that authorities are preparing to seek Assange's arrest. The Washington Post (http://wapo.st/2pJgy4k) reported prosecutors are weighing charges against the organization's members after the Obama-era Justice Department declined to do so.

Possible charges include conspiracy, theft of government property and violating the Espionage Act, the newspaper said, though any charges would need approval from high-ranking officials in the Justice Department. The move comes after WikiLeaks last month released nearly 8,000 documents that it says reveal secrets about the CIA's cyberespionage tools for breaking into computers, cellphones and even smart TVs. It previously published 250,000 State Department cables and embarrassed the U.S. military with hundreds of thousands of logs from Iraq and Afghanistan.

Also at BBC, DW.

Previously: WikiLeaks Says It Has Obtained Trove of CIA Hacking Tools
Wikileaks and CIA Hacking Tools -- Security Firms Assess Impact as Tech Companies Offered Access
Cisco Reports Bug Disclosed in WikiLeaks' Vault 7 CIA Dump
Wikileaks Releases Code That Could Unmask CIA Hacking Operations
CIA Director Mike Pompeo Calls WikiLeaks a "Non-State Hostile Intelligence Service"


Original Submission

This discussion has been archived. No new comments can be posted.
Display Options Threshold/Breakthrough Mark All as Read Mark All as Unread
The Fine Print: The following comments are owned by whoever posted them. We are not responsible for them in any way.
(1)
  • (Score: -1, Troll) by Anonymous Coward on Wednesday March 22 2017, @07:05AM (3 children)

    by Anonymous Coward on Wednesday March 22 2017, @07:05AM (#482580)

    I hope LINODE uses CISCO switches! And FUCK SOYLENT!!

    • (Score: -1, Offtopic) by Anonymous Coward on Wednesday March 22 2017, @08:16AM

      by Anonymous Coward on Wednesday March 22 2017, @08:16AM (#482594)

      My Knob is leaking.

    • (Score: 0) by Anonymous Coward on Wednesday March 22 2017, @08:54AM (1 child)

      by Anonymous Coward on Wednesday March 22 2017, @08:54AM (#482610)

      Why is this comment still showing up even tho it's modded down to -1? My filter should hide posts at this moderation level - something broken? Or settings ignored in the new scheme?

      • (Score: 0) by Anonymous Coward on Wednesday March 22 2017, @01:31PM

        by Anonymous Coward on Wednesday March 22 2017, @01:31PM (#482693)

        Switch to TNG and make yourself a nice cup of tea, earl grey, hot.

  • (Score: 2) by VLM on Wednesday March 22 2017, @11:45AM (1 child)

    by VLM (445) Subscriber Badge on Wednesday March 22 2017, @11:45AM (#482659)

    And all look to have been at the CIA's mercy

    No reason to assume it was only open to the CIA.

    My local police have this stick thing they can slide down a car window to unlock it when some moron locks their baby in the car, etc. That doesn't mean the only people on the planet who can unlock car doors is my local police LOL.

    • (Score: 0) by Anonymous Coward on Wednesday March 22 2017, @03:05PM

      by Anonymous Coward on Wednesday March 22 2017, @03:05PM (#482746)

      I don't think anyone managing such hardware really thinks just the CIA knows of it or uses it.

      The reference is that it came from the wikileaks dump of CIA material. When people use a Slim Jim as you described, fat guys named Wheelz can use it, too.

  • (Score: 2) by bob_super on Wednesday March 22 2017, @06:08PM

    by bob_super (1357) on Wednesday March 22 2017, @06:08PM (#482855)

    Little Bobby Tables would like to remind you about sanitizing your inputs...
    And disabling Telnet...
    And buying from me the custom FPGA-based firewalls which I should have been making long ago.

(1)