Other manufacturers used by WISPs also use the CDP protocol, e.g. Mikrotik and Ubiquiti. But apparently the Cisco vulnerability is in the implementation (e.g. buffer overflow) rather than the protocol itself.
https://www.kb.cert.org/vuls/id/261385/ That doesn’t mean the other vendors don’t have similar vulnerabilities. We should probably have CDP disabled on most interfaces of Mikrotik and Cisco routers anyway, certainly those facing the public Internet and those facing customers. From: AF <[email protected]> On Behalf Of Jaime Solorza Sent: Thursday, February 6, 2020 8:52 PM To: AnimalFarm Microwave Users Group <[email protected]> Subject: [AFMUG] 'Tens of millions' of Cisco devices vulnerable to CDPwn flaws: Network segmentation blown apart by security bugs • The Register https://www.theregister.co.uk/2020/02/05/cisco_cdpwn_flaws/
-- AF mailing list [email protected] http://af.afmug.com/mailman/listinfo/af_af.afmug.com
