CVE-2024-20356: Jailbreaking a Cisco appliance to run DOOM
#1
Quote:The Cisco C195 is a Cisco Email Security Appliance device. Its role is to act as an SMTP gateway on your network perimeter. This device (and the full range of appliance devices) is heavily locked down and prevents unauthorised code from running.

Quote:I recently took one of these apart in order to repurpose it as a general server. After reading online about the device, a number of people mentioned that it is impossible to bypass secure boot in order to run other operating systems, as this is prevented by design for security reasons.

In this adventure, the Cisco C195 device family was jailbroken in order to run unintended code. This includes the discovery of a vulnerability in the CIMC body management controller which affects a range of different devices, whereby an authenticated high privilege user can obtain underlying root access to the server’s BMC (CVE-2024-20356) which in itself has high-level access to various other components in the system.
https://labs.nettitude.com/blog/cve-2024...-run-doom/

Query:
Code:
app="CISCO-IMC" && country="RS"
https://en.fofa.info/result?qbase64=YXBw...JTIg%3D%3D

   
   
There is no patch for stupidity - Kevin Mitnick
Reply


Forum Jump:


Users browsing this thread: 2 Guest(s)