Cisco CSS Web management interface authentication bypass

cisco-css-web-management (6631) The risk level is classified as HighHigh Risk

Description:

Cisco Content Services Switch (CSS) 11000 series switches running WebNS versions prior to 4.01B29s and 4.10B17s could allow a remote attacker to access the switch without authentication. A vulnerability in the Web management interface could allow a remote attacker to access the switch without authentication by bookmarking the Web management URL after the first successful authentication to the switch. An attacker can use this vulnerability to gain access to sensitive information.

Platforms Affected:

  • Cisco, Content Services Switch 11050
  • Cisco, Content Services Switch 11150
  • Cisco, Content Services Switch 11800

Remedy:

Upgrade to the latest version of Cisco WebNS (4.01B29s or later) or Cisco WebNS (4.10B17s or later), as listed in Cisco Systems Field Notice, May 31, 2001. See References.

Consequences:

Gain Access

References:

  • CIAC Information Bulletin L-090, Cisco 11000 Series Switch, Web Management Vulnerability at http://www.ciac.org/ciac/bulletins/l-090.shtml.
  • Cisco Systems Field Notice, May 31, 2001, Cisco Content Service Switch 11000 Series Web Management Vulnerability at http://www.cisco.com/warp/public/707/arrowpoint-webmgmt-vuln-pub.shtml.
  • BID-2806: Cisco Content Service Switch Management Authentication Bypass Vulnerability
  • CVE-2001-0622: The web management service on Cisco Content Service series 11000 switches (CSS) before WebNS 4.01B29s or WebNS 4.10B17s allows a remote attacker to gain additional privileges by directly requesting the web management URL instead of navigating through the interface.
  • CVE-2002-0870: The original patch for the Cisco Content Service Switch 11000 Series authentication bypass vulnerability (CVE-2001-0622) was incomplete, which still allows remote attackers to gain additional privileges by directly requesting the web management URL instead of navigating through the interface, possibly via a variant of the original attack, as identified by Cisco bug ID CSCdw08549.
  • OSVDB ID: 1848: Cisco CSS Web Management Authentication Bypass

Reported:

May 31, 2001

The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (IBM Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.

For corrections or additions please email xforce@iss.net

Return to the main page