| VID |
20002 |
| Severity |
30 |
| Port |
161 |
| Protocol |
UDP |
| Class |
Snmp |
| Detailed Description |
It was possible to obtain the list of SNMP communities of the router via SNMP.
Multiple Cisco IOS Software and CatOS software releases is vulnerable to the exposure of SNMP community strings. An attacker may use this flaw to gain read/write SNMP access on the router. The access privileges can be exploited to modify the configuration and operation of any affected devices without authorization. |
| Recommendation |
We recommend to upgrade affected systems to fixed releases of software, or to apply measures to protect such systems against unauthorized use by restricting access to SNMP services until such time as the devices can be upgraded.
Refer to this site for the detailed descriptions: http://www.cisco.com/warp/public/707/ios-snmp-community-vulns-pub.shtml |
| Related URL |
CVE-2004-1775 (CVE) |
| Related URL |
5030 (SecurityFocus) |
| Related URL |
6179 (ISS) |
|
