Cisco 600 Series DSL Customer Premises Equipment Routers

Document ID: 12866

Contents

Introduction
Before You Begin
      Conventions
      Prerequisites
      Components Used
Upgrade CBOS Software
Change the Cisco 600 Configuration
Related Information

Introduction

Cisco has issued Cisco Security Advisory: CBOS Web-based Configuration Utility Vulnerability regarding Cisco Broadband Operating System (CBOS) vulnerability to the "Code Red" worm. Refer to the advisory to learn the details of the vulnerability and which products are affected.

The purpose of this document is to provide information about downloading the latest version of CBOS software and implementing the workaround explained in the security advisory.

Before You Begin

Conventions

For more information on document conventions, see the Cisco Technical Tips Conventions.

Prerequisites

There are no specific prerequisites for this document.

Components Used

This document is not restricted to specific software and hardware versions.

The information presented in this document was created from devices in a specific lab environment. All of the devices used in this document started with a cleared (default) configuration. If you are working in a live network, ensure that you understand the potential impact of any command before using it.

Upgrade CBOS Software

To download the latest version of CBOS, please read Cisco Security Advisory: CBOS Web-based Configuration Utility Vulnerability for downloading instructions.

To upgrade CBOS software, refer to Installing Software on the Cisco 600 Series Via Serial Download. This document describes a step-by-step procedure for performing the upgrade.

Change the Cisco 600 Configuration

If you want to implement the workaround described in the advisory, follow the steps below:

1. Read Cisco Security Advisory: CBOS Web-based Configuration Utility Vulnerability.

2. Reboot the Cisco 600.

3. Log on to CBOS using either a serial or Telnet interface.

   For a serial connection, use the serial cable supplied with the modem to connect a COM port on your PC to the management port on the modem. This cable has a DB-9 connector on the PC end and an RJ-45 plug on the modem end.

   If you do not have a management cable, you can make one. For more information, refer to Making a Management Cable for the Cisco 600 Series CPE.

4. Use a terminal program such as HyperTerminal or ProComm to connect to the modem, and configure the following settings:

   • COM port = port into which you plugged the cable

   • Baud rate: 38400 bps

   • Data bits: 8

   • Parity: None

   • Stop bits: 1

   • Flow control: None

5. Enter the username/password or press ENTER until you see the prompt. For example, the prompt might be cbos>, modem1>, or usa>

6. At the prompt, type enable, type the password, and then press ENTER. If no password is assigned, then press ENTER.

   For example:

   cbos>enable
   password <password>
   cbos#

   You are now in enable mode and can change the configuration of the Cisco 600.

7. Type write at the prompt (cbos# write) to save your changes.

8. Type reboot at the prompt (cbos# reboot) to reboot the Cisco 600 and enable your changes.

Related Information

• Using the Command Line Interface
• Installing Software on the Cisco 600 Series Via Serial Download
• Cisco Broadband Operating System (CBOS)
• CBOS 2.4 User Guide
• Cisco 675 Frequently Asked Questions
• Cisco DSL Product Support Information
• Technical Support - Cisco Systems