CVE-2001-1434
0
5
10
Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N
Link copied!
Description
Cisco IOS 12.0(5)XU through 12.1(2) allows remote attackers to read system administration and topology information via an "snmp-server host" command, which creates a readable "community" community string if one has not been previously created.
CVSS Vector Details
Attack Vector
Network
Attack Complexity
Low
Confidentiality
P
Integrity
None
Availability
None
Affected Software Configurations
- o cisco ios 12.0 * * * * * * *
- o cisco ios 12.0\(1\) * * * * * * *
- o cisco ios 12.0\(1\)w * * * * * * *
- o cisco ios 12.0\(1\)xa3 * * * * * * *
- o cisco ios 12.0\(1\)xb * * * * * * *
- o cisco ios 12.0\(1\)xe * * * * * * *
- o cisco ios 12.0\(2\) * * * * * * *
- o cisco ios 12.0\(2\)xc * * * * * * *
- o cisco ios 12.0\(2\)xd * * * * * * *
- o cisco ios 12.0\(2\)xe * * * * * * *
Weaknesses (CWE)
- NVD-CWE-Other
References & External Links
- http://www.cisco.com/warp/public/707/ios-snmp-community-vulns-pub.shtml
- http://www.kb.cert.org/vuls/id/848944
- https://exchange.xforce.ibmcloud.com/vulnerabilities/6178
- http://www.cisco.com/warp/public/707/ios-snmp-community-vulns-pub.shtml
- http://www.kb.cert.org/vuls/id/848944
- https://exchange.xforce.ibmcloud.com/vulnerabilities/6178