nanog mailing list archives

RE: Cisco vulnerability on smaller catalyst switches

From: "Steve Rude" <steve () skyriver net>
Date: Fri, 18 Jul 2003 17:26:21 -0700

I tested Catalyst 2924-XL-EN with 12.0(5)WC5a and I found that

without

L3 capability it does not seem to be affected.  But with L3
connectivity, if you direct the attack at the VLAN1 interface it is
definitely susceptible.

I believe directing the attack to VLAN1 should just kill the remote 
management and won't effect switching capability. Can anyone confirm?


Ah, you are right.  I just tested it, and the switching through the
catalyst continues without interruption.  Only the management interface
is unavailable.

--steve

Current thread:

Cisco vulnerability on smaller catalyst switches Chris Griffin (Jul 18)
- Re: Cisco vulnerability on smaller catalyst switches Petri Helenius (Jul 18)
- <Possible follow-ups>
- RE: Cisco vulnerability on smaller catalyst switches McBurnett, Jim (Jul 18)
- RE: Cisco vulnerability on smaller catalyst switches Steve Rude (Jul 18)
  - Re: Cisco vulnerability on smaller catalyst switches Haesu (Jul 18)
- RE: Cisco vulnerability on smaller catalyst switches Steve Rude (Jul 18)