Yet Another NOBUS Backdoor To Root On Cisco Kit Burned After The "Us" Set Expanded

A backdoor in the SSH management portion of Cisco's "Cisco Nexus 9000 Series Application Centric Infrastructure (ACI) Mode Switch Software" has been documented (archived). This particular incarnation of the hole has been patched by Cisco after the whistle was blown. The hole involves a default root SSH keypair which could be used by anyone connecting over IPv6 to login as root. This is not the first Cisco NOBUS backdoor to be burned after the definition of "us" capable of using the backdoor expanded.

Leave a Reply

Your email address will not be published. Required fields are marked *

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <s> <strike> <strong>