Gentlefolks, Cisco has become aware of an issue with ILMI (and there is is another advisory pending) across several versions of IOS. Please look at the PSAT pages on www.cisco.com, as info will be available very shortly with full details. Rgds Roger De Salis James A.T. Rice wrote
Its looks like parts of my earlier email are somewhat misleading, the ILMI community appears to only allow RW access to the system object and possibly some more objects. Its not a 'standard' open RW community. hence the damage caused by this backdoor is limited. There is still some write access however, so the fix mentioned below is still highly recommended.
And of course - it allows people to read what IOS/model cisco you have, which could be used to find exploitable bugs in that particular release. Oh I wonder what the chances of having a router stolen due to discovery of system.sysLocation is! :-)
Warm Regards James -- \_ Roger De Salis Cisco Systems NZ Ltd
To unsubscribe from nznog, send email to majordomo(a)list.waikato.ac.nz where the body of your message reads: unsubscribe nznog