| VID |
29152 |
| Severity |
40 |
| Port |
22 |
| Protocol |
TCP |
| Class |
CISCO |
| Detailed Description |
SNMP community's authority in the CISCO IOS system is not safe. SNMP allows RO(Read Only)and RW(Read Write) mode. If administrator use RW Community string for easy management, attackers can change the configurations through SNMP. Network architecture, MAC address, IP address, SW information, HW information can be obtained through SNMP.
* Platforms Affected:
CISCO IOS |
| Recommendation |
Forbid SNMP read-write community strings as follows :
Router# config terminal
Router(config)# snmp-server community <strings> RO |
| Related URL |
(CVE) |
| Related URL |
(SecurityFocus) |
| Related URL |
(ISS) |
|
