Title: Cisco SN Storage Router Developer Shell Unauthorized Access Vulnerability
Severity: CRITICAL
Description:
The Cisco Storage Router is a enterprise-level gigabit-capable routing device designed to handle storage over networks. It is distributed by Cisco Systems.
A problem in the firmware of the router can allow a remote user to gain unauthorized access to the router. The problem is in the existance of a hidden shell on the router.
In the Cisco SN Storage Router firmware there exists a shell used primarily for the development of SN firmware. This shell is not password protected, and grants access to the user to execute commands, debug mode, start and stop processes, and interfer with the normal operation of the router.
The commands a user executes through this shell will not be logged. The normal logging facilities of the SN router do not monitor the activity of this shell, nor report on it's status or use.
This vulnerability may be accessed by a remote user through either rlogin on the fibrechannel port of the router, or via port 8023 on the gigabit ethernet side of the router.
Only the Cisco SN 5420 is vulnerable.
Affected Products:
- Cisco SN 5420 Storage Router 1.1.0(2)
- Cisco SN 5420 Storage Router 1.1.0(3)
Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.
