CiscoInTheSkyWithDiamonds

More documents

Recommendations

Info

Our work with Cisco PSIRT goes back to 1998 Greetings Gaus! PSIRT was, as always, great to work with Greetings Joaquin! The issues were reported November 8, 2012 CSCud14840 Nexus 1000V VMS/VEM heartbeat DOS CSCud14837 Nexus 1000V VSM to vCenter communication vulnerable to MITM attack CSCud14832 Nexus 1000V UUID spoofing allows STUN protocol message injection CSCud14825 Nexus 1000V can crash ESXi servers that are currently debugged for STUN CSCud14710 Nexus 1000V VSM/VEM communication encryption bypass CSCud14691 Nexus 1000V VSM/VEM communication encryption implementation problems The first fix (CSCud14825 ) is expected for June / July 2013 The product is sold and used without any notice to customers
Page 1: Observed by Greg & FX
Page 4 and 5: 1967: First systems with IBM CP-67
Page 6 and 7: 10 GigE Virtual Switch
Page 9 and 10: Cisco Nexus Operating System (NX-OS
Page 11 and 12: This being a VMware VM, we can boot
Page 13 and 14: The N1kV requires license files to
Page 15 and 16: Let‘s see what that function does
Page 17 and 18: Exploitation is a bit tricky though
Page 19 and 20: The jailbreak script adds a user to
Page 21 and 22: Why talk about licensing? CSCud0142
Page 23 and 24: 6 bytes (12 hex chars) “signature
Page 25 and 26: We could now exercise our 1337 reve
Page 28 and 29: CDP is everywhere in Cisco land VM
Page 30 and 31: The VSM stores a set of “opaque d
Page 32 and 33: Offset Size Meaning 0x0 8 Bit Proto
Page 35 and 36: VEMs register themselves with the V
Page 37 and 38: Cisco’s documentation says 128 Bi
Page 39: 1. Compromise a web server in a vir
Page 42 and 43: At Phenoelit, FtR is the go-to-guy

CiscoInTheSkyWithDiamonds

Create successful ePaper yourself

Delete template?

Save as template?