|CVSS SCORE||10, (AV:N/AC:L/Au:N/C:C/I:C/A:C)|
The specific flaw exists within the Smart Install client. A specially crafted packet can be sent to the SMI IBC server to instruct it to download the IOS config file and IOS image file(s). The vulnerability allows the attacker to replace the startup configuration file and the booting IOS image on Cisco switches running as a Smart Install client. The attacker can specify a user account with highest access in the config file, allowing them to take complete control of the switch.
Cisco has issued an update to correct this vulnerability. More details can be found at:
|CREDIT||Tenable Network Security