troubleshooting Question
Cisco buffer overflow vulnerability
Got an IPS alert that says " Telnet: Cisco Buffer Overflow Vulnerability (High)
Network Security Platform has detected a "High (9)" attack.
Attack type: Signature: telnet-cmd-too-long"
Can I correctly say:
a) if we don't have telnet service enabled on all our Cisco devices, then we're not
vulnerable (even if telnet is enabled on some other legacy systems) ?
b) this only affects Cisco 676/677 devices, so if we don't have these devices in
our environment, then we're not vulnerable
If I'm mistaken to make above 2 statements, do elaborate & explain
Network Security Platform has detected a "High (9)" attack.
Attack type: Signature: telnet-cmd-too-long"
Can I correctly say:
a) if we don't have telnet service enabled on all our Cisco devices, then we're not
vulnerable (even if telnet is enabled on some other legacy systems) ?
b) this only affects Cisco 676/677 devices, so if we don't have these devices in
our environment, then we're not vulnerable
If I'm mistaken to make above 2 statements, do elaborate & explain
Learn from the best
Network and collaborate with thousands of CTOs, CISOs, and IT Pros rooting for you and your success.
Andrew Hancock - VMware vExpert
See if this solution works for you by signing up for a 7 day free trial.
Unlock 1 Answer and 3 Comments.
Try for 7 days”The time we save is the biggest benefit of E-E to our team. What could take multiple guys 2 hours or more each to find is accessed in around 15 minutes on Experts Exchange.
Our community of experts have been thoroughly vetted for their expertise and industry experience.