Reply to post: Re: Company thinks it's in the hardware business.

Cisco whispers the three little words to really get an ASR 9000 net admin's blood pumping: Remote unauthenticated access

Jellied Eel Silver badge

Re: Company thinks it's in the hardware business.

I dunno.. It's all Chinese to me.. Oh, and Calvados <hic>, a fine tipple!

The fix seems... curious. Been a while since I've been a Cisco wrangler, but looks like un-commenting a couple of lines to define management VRFs.. And if not, then I'm guessing the vulnerabilty could extend to anyone who can reach a router's management interface via IGP, or worse, EGP.

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Biting the hand that feeds IT © 1998–2022