Where or how do I check if a Cisco router is using "default community string"?
is a security VA scan report
Following output below is from "sho ver" output on the said Cisco router.
Where can a list of its vulnerabilities (eg: various security vulnerabilities
like Openssl heartbleed, FREAK) for the version shown below & where can
I get the patch for these.
===================== "show version" output ==========================
Cisco IOS Software, IOS-XE Software (X86_64_LINUX_IOSD-UNIVERS
ALK9-M), Version 1 5.3(2)S, RELEASE SOFTWARE (fc1)
Technical Support: http://www.cisco.com/techsupport
Copyright (c) 1986-2013 by Cisco Systems, Inc.
Compiled Mon 25-Mar-13 15:39 by mcpre
IOS XE Version: 03.09.00.S
Cisco IOS-XE software, Copyright (c) 2005-2013 by cisco Systems, Inc.
All rights reserved. Certain components of Cisco IOS-XE software are
licensed under the GNU General Public License ("GPL") Version 2.0. The
software code licensed under GPL Version 2.0 is free software that comes
with ABSOLUTELY NO WARRANTY. You can redistribute and/or modify such
GPL code under the terms of GPL Version 2.0. For more details, see the
documentation or "License Notice" file accompanying the IOS-XE software,
or the applicable URL provided on the flyer accompanying the IOS-XE
ROM: IOS-XE ROMMON
BDD2EDRT01 uptime is 1 year, 38 weeks, 2 days, 8 hours, 28 minutes
Uptime for this control processor is 1 year, 38 weeks, 2 days, 8 hours, 29 minut es
System returned to ROM by reload at 02:35:15 SGP Sun Jul 14 2013
System restarted at 02:38:26 SGP Sun Jul 14 2013
System image file is "bootflash:/asr1001-univer
Last reload reason: Reload Command
This product contains cryptographic features and is subject to United
States and local country laws governing import, export, transfer and
use. Delivery of Cisco cryptographic products does not imply
third-party authority to import, export, distribute or use encryption.
Importers, exporters, distributors and users are responsible for
compliance with U.S. and local country laws. By using this product you
agree to comply with applicable laws and regulations. If you are unable
to comply with U.S. and local laws, return this product immediately.
A summary of U.S. laws governing Cisco cryptographic products may be found at:
If you require further assistance please contact us by sending email to
License Level: adventerprise
License Type: Permanent
Next reload license Level: adventerprise
cisco ASR1001 (1RU) processor with 3796478K/6147K bytes of memory.
Processor board ID SSI162102XY
8 Gigabit Ethernet interfaces
32768K bytes of non-volatile configuration memory.
8388608K bytes of physical memory.
7741439K bytes of eUSB flash at bootflash:.
Configuration register is 0x2102