Evolution in Attacks Against Cisco IOS Software Platforms

Original release date: August 12, 2015

Cisco has observed increasingly complex attacks that could allow an attacker to gain administrative access to a Cisco IOS device by installing a malicious ROMMON image. Successful exploitation using this image could allow an attacker to manipulate device behavior after the device is rebooted.

US-CERT encourages users and administrators to review the Cisco Security Activity Bulletin and apply recommendations to protect Cisco IOS devices.

This product is provided subject to this Notification and this Privacy & Use policy.