Cisco router feature open to exploit

Default embedded packet capture could expose sensitive data

A default feature in Cisco routers can be exploited to surrender data, according to this post in The Register. The vulnerability was discovered by Brazilian security researchers and Cisco is aware of it.

The feature is embedded packet capture, a troubleshooting tool that allows administrators to capture packets to determine, for example, the cause of an anomaly. The researchers used the EPC feature to collect massive amounts of data that could be exploited, though they and Cisco admit access to EPC would require privileged user access.

But since EPC is a default feature, its potential for abuse still presents a risk, the researchers say. They say hackers could access user credentials, pre-shared keys and other sensitive information.

Cisco advises customers is to ensure that appropriate user access controls are in place to avoid abuse of the EPC feature, according to The Register.

The researchers presented and demonstrated their findings at this week’s Infiltrate conference in Miami.

More from Cisco Subnet:

Arista decouples switch, software pricing

SDN management battle: TAPs vs. network packet brokers

Cisco programs the cloud

Cisco, Microsoft part of optics consortium directing data center standards

EMC eying Arista, Brocade?

Cisco replaces UCS server head; software leaders also depart

Does Juniper have too many SDNs?

VMware opens up on Cisco

Brocade: "Software is going to eat everything"

Juniper rewires the data center

Follow all Cisco Subnet bloggers on Twitter.Jim Duffy on Twitter

Join the Network World communities on Facebook and LinkedIn to comment on topics that are top of mind.

Copyright © 2015 IDG Communications, Inc.

SD-WAN buyers guide: Key questions to ask vendors (and yourself)