10 Feb
2020
10 Feb
'20
1:54 p.m.
On 10/02/2020 18:13, Scott Weeks wrote:
Just because you use cisco devices doesn't mean you have to use their proprietary protocols, such as EIGRP or CDP. OSPF or LLDP work just fine and interoperate with other vendors... :)
The CDPwn vulnerability covers similar vulnerabilities in LLDP, and does indeed demonstrate that network segmentation (i.e. "dude it's just L2") is not the last word in mitigating against said vulnerabilities. You ought to all be far more concerned, IMO. -- Tom