Title: Cisco Content Service Switch Management Authentication Bypass Vulnerability
Severity: CRITICAL
Description:
The Cisco Content Service Switch is an enterprise level web content switch, designed for load balancing and use as a frontend to a redundant web farm. It was previously manufactured by Arrowpoint.
A problem with the Content Service Switch makes it possible for users to gain elevated privileges. This is due to insufficent access control on the web management interface. It could also lead to an arbitrary user gaining unauthorized access to the switch.
The problem occurs in the redirection of authenticated users to the management interface. During normal operation, a user accessing the interface is required to supply a username and password. After supplying the necessary authenication information, the user is redirected to a URL for the web management interface.
This URL does not fall within the confines of access control in the switch firmware. By bookmarking this URL, a user can return to the management interface at any time with management privileges.
This problem also makes it possible for a remote user to gain access to the switch when accessed via public networks. In the event of a malicious user snooping network traffic, it is possible for the user to extract this URL, allowing arbitrary access to the management interface.
Affected Products:
- Cisco CSS11000 Content Services Switch
- Cisco CSS11050 Content Services Switch
- Cisco CSS11150 Content Services Switch
- Cisco CSS11501 Content Services Switch
- Cisco CSS11503 Content Services Switch
- Cisco CSS11506 Content Services Switch
- Cisco CSS11800 Content Services Switch
- Cisco WebNS 4.0.01B23s
- Cisco WebNS 4.0.01B29s
- Cisco WebNS 4.0.1
- Cisco WebNS 4.0.1B19s
- Cisco WebNS 4.1.00B13s
- Cisco WebNS 4.1.00B17s
Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.
