Cisco Smart Install Detection
Info Nessus Plugin ID 105161
SynopsisThe Cisco Smart Install feature is enabled on the remote host.
DescriptionThe Cisco Smart Install (SMI) feature is enabled on the remote host.
If the SMI Client role enabled, it is subject to protocol misuse, which could allow an unauthenticated, remote attacker to:
- Substitute the switch's startup-config file with a file that the attacker prepared and force a reload of the switch after a defined time interval.
- Load the attacker-supplied IOS image onto the switch.
- Execute high-privilege configuration mode CLI commands on the switch, including do-exec CLI commands.
- Copy arbitrary files from the switch to the attacker-controlled TFTP server.
SolutionDisable the Smart Install feature if not needed.