Multiple switches from IBM and Lenovo are affected by a critical flaw
Learn how to protect them against a vicious backdoor.
Flex System, RackSwitch and BladeCenter switches from Lenovo and IBM are vulnerable in front of a new kind of backdoor.
The vulnerability CVE-2017-3765 affects the Enterprise Network Operating System (ENOS) which is used in the affected devices. This vulnerability can be used by hackers to access the management interface of a switch.
The backdoor named HP Backdoor have been found during an audit done by our cybersecurity team. The authentication bypass is located in the Telnet and Serial Console management interfaces, and in the SSH and Web management interfaces if particular conditions are created.
HP Backdoor requires special conditions done under specific circumstances in which unique credentials for each switch that lead to admin unauthorised access.
This vulnerability affects ENOS, developed by Nortel’s Blade Server Switch Business Unit (BSSBU), that can be found in Lenovo’s RackSwitch and Flex System. This vulnerability is possible because of a demand that a customer had regarding new feature for ENOS OS back in 2004.
One of our cybersecurity analyst says that the cybercriminals can expedite any switch that is still running ENOS. To be safe, he recommends updating ENOS to its latest version 18.104.22.168 which has a patch for this vulnerability. Only ENOS running switches are affected, the ones that are using CNOS are not affected. These switches are used in many ways and because of those multiple devices that work with them can be affected if they are unsafe.
Windows users can download free antivirus solution CyberByte by clicking the links from the end of the page. The free antivirus will help you to know if your PC is infected. Windows free antivirus of CyberByte is an awarded software for malware detection.
Mac / MacOS / OS X users can download free Mac antivirus solution CyberByte by clicking the links from the end of the page. The free antivirus will help you to know if your Mac is infected. MacOS / OS X free antivirus of CyberByte is an awarded software for malware detection. The free antivirus for Mac is available for new MacOS and older OS X versions.
CyberByte Antivirus comes in two flavors:
MacOS Version - the free download Mac antivirus available on our website (https://mac.cyberbyte.org)
Windows Version - the free download Windows antivirus available on our website (https://pc.cyberbyte.org)
The free antivirus is with limited features.
The procedure is simple:
Just free download antivirus from CyberByte website either for Mac or Windows. Install it using the antivirus installer package. Windows and Mac users will free malware scan their devices. The scan duration depends on how many files the end user has. CyberByte antivirus will show if any files are infected after the scan is finished.