Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
559
Views
0
Helpful
2
Replies

Patch/Fix for C2960-48TC-L CMP telnet vulnerability

Go to solution
mo shea
Level 1
Level 1

‎07-25-2017 01:04 PM - edited ‎03-08-2019 11:28 AM

Hello,

I have been trying to find an upgrade for the C2960-48TC-L switch where the CMP telnet vunerability (CSCvd48893) has been fixed, but it seems the latest ios from the download page for this switch was released sometime in November 2016, before the bug was discovered.

I know the work around is to remove telnet option from line configs, but we need to keep it on some switches. I followed the recommendation to restrict telnet access to specific hosts using acls, but vulnerability scanners do not take that into consideration and always report the switches ios to have a critical bug.

Is there any patch around or this should be requested from TAC directly

All help is appreciated

Moe Shea

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Reza Sharifi
Hall of Fame
Hall of Fame

‎07-25-2017 01:37 PM

Hi,

The 2960 series switches have been EOL/EOS for a long time now (over 8 years) and so there is no more new IOS being released. You may want to contact TAC and see if they have a solution. 

HTH

View solution in original post

0 Helpful
2 Replies 2

Go to solution
Reza Sharifi
Hall of Fame
Hall of Fame

‎07-25-2017 01:37 PM

Hi,

The 2960 series switches have been EOL/EOS for a long time now (over 8 years) and so there is no more new IOS being released. You may want to contact TAC and see if they have a solution. 

HTH

0 Helpful

Go to solution
mo shea
Level 1
Level 1
In response to Reza Sharifi

‎07-25-2017 01:47 PM

Thank you Reza for the reply. according to EOL notice the last date for security patch release is October 2017. As you suggested I will contact TAC and hope they can provide a solution.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card