Vigil@nce - Ruggedcom ROS: packet transmission between VLAN
November 2015 by Vigil@nce
This bulletin was written by Vigil@nce : http://vigilance.fr/offer
SYNTHESIS OF THE VULNERABILITY
An attacker can use the IP Forwarding feature of Ruggedcom ROS, in order to send a packet to another VLAN.
Impacted products: ROS, RuggedSwitch.
Creation date: 02/09/2015.
DESCRIPTION OF THE VULNERABILITY
The Ruggedcom ROS switch can be configured with several VLAN, with an IP address in each VLAN.
However, in this case, as IP routing is enabled by default, an attacker can send a packet from one VLAN to another.
An attacker can therefore use the IP Forwarding feature of Ruggedcom ROS, in order to send a packet to another VLAN.
ACCESS TO THE COMPLETE VIGIL@NCE BULLETIN