26 Apr 2013

Cisco Enterprise Routers Flawed By Critical Bugs

Two critical vulnerabilities have been discovered in Cisco’s enterprise-level router gear running the Cisco NX-OS. The flaw affects the Cisco Nexus, Cisco Unified Computing System (UCS), Cisco MDS 9000 Series Multilayer Switches, and Cisco 1000 Series Connected Grid Routers (CGR).

According to the advisory by Cisco, the flaws (CVE-2013-1179 and CVE-2013-1180) allow a buffer overflow condition that can result in malicious code execution on the network. The situation is particularly critical, as the Cisco 1000 Series Connected Grid Routers are widely deployed in mission-critical infrastructures, including energy, gas and water-supply plants.

“Cisco NX-OS based devices contain multiple buffer overflow vulnerabilities in Cisco Discovery Protocol (CDP) subsystem. These vulnerabilities could allow an unauthenticated, adjacent attacker to execute arbitrary code with elevated privileges,” reads the security advisory.

However, in order to trigger exploitation, the attacker needs to be able to send malformed Cisco Discovery Protocol packets directly to the vulnerable router, so exploitation via the web is impossible.

Cisco has released an update to mitigate the issue.