Notification

Icon
Error

Cisco IOS and IOS XE Software Smart Install Remote Code Execution Vulnerability

Posted: Friday, April 6, 2018 2:37:58 PM(UTC)
Esben.D

Esben.D

Member Administration Original PosterPosts: 1,982
2
Like
In light of the recent Cisco IOS and IOS XE Software Smart Install Remote Code Execution Vulnerability, we created a report which can be used to find possible vulnerable Cisco switches.

Cisco switches will in most cases have their software name and version in the description once scanned by Lansweeper. Based on the description, the report below will display all switches that have "IOS" or "IOS XE" software.
Code:
Select Distinct Top 1000000 tblAssets.AssetID,
  tblAssets.AssetName,
  tsysAssetTypes.AssetTypename,
  tblAssetCustom.Manufacturer,
  tblAssets.IPAddress,
  tblAssets.Mac,
  tblAssets.Description,
  tsysAssetTypes.AssetTypeIcon10 As icon,
  tblAssets.Lastseen,
  tblAssets.Lasttried
From tblAssets
  Inner Join tblAssetCustom On tblAssets.AssetID = tblAssetCustom.AssetID
  Inner Join tsysAssetTypes On tsysAssetTypes.AssetType = tblAssets.Assettype
  Inner Join tblSNMPInfo On tblAssets.AssetID = tblSNMPInfo.AssetID
Where (tblAssets.Description Like '%IOS%' Or tblAssets.Description Like
    '%IOS%XE%') And tblAssetCustom.State = 1
Order By tblAssets.AssetName

To use the report, do the following:
  1. Add the report to Lansweeper. Instructions can be found here.
  2. Find the software type (IOS or IOS XE) and version numbers of the switches in the report's "Description" column.
  3. Enter the version numbers in Cisco's software checker here: https://tools.cisco.com/...enter/softwarechecker.x

    Cisco IOS Software Checker

  4. Click Continue twice and check if "Cisco IOS and IOS XE Software Smart Install Remote Code Execution Vulnerability" is in the list of affected security advisories.

    Security Advisories That Affect This Release
Esben.D
#1Esben.D Member Administration Original PosterPosts: 1,982  
posted: 4/6/2018 2:38:28 PM(UTC)
If you have any questions regarding the report, please contact us via email at support@lansweeper.com

Active Discussions

Lansweeper Can Actions work when using when using a Ubuntu machine
by  mzipperer   Go to last post Go to first unread
Last post: 4/1/2021 10:16:34 PM(UTC)
Lansweeper Remove user from local admin group
by  jhartley@alcona-county.net  
Go to last post Go to first unread
Last post: 3/24/2021 4:27:30 PM(UTC)
Action Password Status
by  mcgr5   Go to last post Go to first unread
Last post: 3/24/2021 2:07:51 PM(UTC)
Lansweeper Network Scanning
by  MZU  
Go to last post Go to first unread
Last post: 3/7/2021 8:23:10 AM(UTC)
Lansweeper Creating a schduled task on remote computer
by  steveb   Go to last post Go to first unread
Last post: 2/26/2021 7:44:48 PM(UTC)
Lansweeper Uninstall Software action not working?
by  Brandon  
Go to last post Go to first unread
Last post: 2/15/2021 10:03:22 PM(UTC)
Action Connect to computer using Spashtop Business
by  TapeDeck   Go to last post Go to first unread
Last post: 1/29/2021 5:00:29 PM(UTC)
Action Check Asset Window Update Status Via Powershell
by  Andy.S  
Go to last post Go to first unread
Last post: 1/19/2021 3:30:09 PM(UTC)