The Secure Shell server (SSH) implementation in Cisco IOS contains multiple vulnerabilities that allow unauthenticated users the ability to generate a spurious memory access error or, in certain cases, reload the device. The IOS SSH server is an optional service that is disabled by default, but its use is highly recommended as a security best practice for management of Cisco IOS devices. SSH can be configured as part of the AutoSecure feature in the initial configuration of IOS devices, AutoSecure run after initial configuration, or manually. Devices that are not configured to accept SSH connections are not affected by these vulnerabilities.
Did you find this white paper useful?
Related white papers
Balancing Security Against Productivity
What makes for great security? Is it about keeping the bad guys out or letting the good guys in? About defending attacks or preventing them? When IDG Research Services queried...
Secure Desktop On-Demand Webcast
The desktop or endpoint is one of the most vulnerable parts of your environment. Threats are everywhere. You have users who love to experiment with device settings (only to wonder...
Novell Zenworks Endpoint Security Management: Total Control from a Single Console
Still super gluing your USB ports shut? Unauthorized access to networks, lost or stolen laptops and other mobile hardware, and theft of proprietary information or intellectual property accounted for more...
Web application security: automated scanning versus manual penetration testing
Web sites are vulnerable to Web application attacks and a great percentage of these attacks occur over the HTTP/S protocols, ports that are often exposed to the entire online community....
Complexity versus Security: How to Strike a Balance and Maintain Your Sanity
Instead of buying expensive individual products that add complexity to an organization's security architecture, many small to medium businesses are now able to take a holistic approach to their needs....
Streamline User Administration with Novell Nsure Identity Manager 2
This information-packed white paper provides an in-depth look at the capabilities that are built into Novell Nsure Identity Manager 2, which provides an identity management foundation for account provisioning, security,...
Cisco Systems WebVPN - The Trusted Name for Untrusted Computers
With Cisco Secure Desktop, any computer can be safely used to access the company network, while the danger of leaving any data behind after the session ends is eliminated. This...
