Cisco products have severe hard-coded password vulnerabilities and Java deserialization Vulnerabilities

Cisco products have severe hard-coded password vulnerabilities and Java deserialization Vulnerabilities

Cisco recently released 22 security bulletins, including two important fixes: fixing a hard-coded Password Vulnerability (CVE-2018-0141) and a Java deserialization Vulnerability (CVE-2018-0147 ).

Hard-coded Password Vulnerability

The hard-coded password vulnerability affects Cisco's Prime Collaboration Provisioning (PCP) product, the main function of this product is to allow administrators to remotely install and maintain Cisco's internally deployed communication devices (Integrated IP Phone, video, and voice mail) and services related to their subscribers. Cisco PCP is usually installed on a Linux server. Unauthenticated local attackers can exploit this vulnerability to infect other devices in the same network, connect them to the affected system as SSH, and escalate their permissions to the root level, then take over the entire system (the PCP Linux operating system ).

According to the CVSS vulnerability rating (out of 10 points), the hard-coded password vulnerability is only 5.9, Which is medium-risk. Cisco discovered this vulnerability during the internal security test. Due to the possible unvalued and insecure environment, attackers may obtain root privileges. Therefore, their judges are "highly risky ". Cisco said that this vulnerability affects only the PCP version 2016 released in 11.6. We recommend that you upgrade it to the patched PCP version 12.1 as soon as possible to avoid security issues.

Java deserialization Vulnerability

Another important vulnerability is the Java deserialization vulnerability, which affects Cisco's Secure Access Control System (ACS ). When the Affected Software tries to deserialize the content provided by the user, remote attackers can exploit this vulnerability to send well-designed serialized Java objects without providing correct creden, obtain the root permission and execute any command.

According to the CVSS vulnerability score (out of 10 points), the vulnerability score is 9.8 points, which is a serious vulnerability and affects all versions of Cisco Security ACS systems earlier than 5.8 patch 9. However, systems running version 5.8 patch 7 and version 5.8 patch 8 need to provide creden。 for exploitation, so the CVSS vulnerability score is 8.8. Sienke recommends that you upgrade the system to the latest version as soon as possible and update the security by referring to the Security Bulletin.

* Reference Source: TheHackerNews

This article permanently updates link: https://www.bkjia.com/Linux/2018-03/151286.htm