Nmap Development mailing list archives

Previous By Date Next
Previous By Thread Next

Re: fingerprintable Cisco IOS versions

From: Raymond Lo <r.aymon.dlo.gm () gmail com>
Date: Fri, 9 Nov 2012 11:29:12 +0800
Hi

My target Cisco switch is in version 12.2.18-SXF8 (image name
:s72033-ipservicesk9-vz.122-18.SXF8.bin), which is much newer than version
10.3.

However, it can't be fingerprinted by nmap. Any idea ?
Regards
Raymond

On Tue, Oct 30, 2012 at 12:17 AM, David Fifield <david () bamsoftware com>wrote:


On Mon, Oct 29, 2012 at 11:09:14AM +0800, Raymond Lo wrote:

Hi

May I know what is the cutoff Cisco IOS versions in the NMAP fingerprint
database ?

For example, it seems that the oldest IOS version in the NMAP fingerprint
database is Cisco 2500 (68030) IGS-I-L, Version 11.1(24).


It looks like the oldest is 10.3.

# IOS (tm) 3000 Software (IGS-I-L), Version 10.3(7), RELEASE SOFTWARE (fc1)
Fingerprint Cisco 3000 switch (IOS 10.3)
Class Cisco | IOS | 10.X | switch
CPE cpe:/h:cisco:catalyst_3000
CPE cpe:/o:cisco:ios:10.3

There is not specific cutoff. We only have the fingerprints that users
submit.

David Fifield


_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://seclists.org/nmap-dev/
Previous By Date Next
Previous By Thread Next

Current thread: