Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
certCERTVU:732671
HistoryJul 12, 2010 - 12:00 a.m.

Cisco Industrial Ethernet 3000 Series switches have hardcoded SNMP community strings

2010-07-1200:00:00
www.kb.cert.org
27

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.015 Low

EPSS

Percentile

86.9%

JSON

Overview

Cisco Industrial Ethernet 3000 (IE 3000) Series switches running Cisco IOS Software releases 12.2(52)SE or 12.2(52)SE1, contain well-known, hard-coded read and write SNMP community strings. An remote attacker could take full control of a vulnerable device.

Description

Cisco Industrial Ethernet 3000 (IE 3000) Series switches running Cisco IOS Software releases 12.2(52)SE or 12.2(52)SE1, contain well-known, hard-coded read and write SNMP community strings (names). The hard-coded strings are restored to the running configuration after a device reload. The SNMP service is disabled by default.

Impact

Successful exploitation of the vulnerability could result in an attacker obtaining full control of the device.

Solution

Upgrade

According to Cisco Security Advisory cisco-sa-20100707-snmp, the first fixed IOS releases is 12.2(55)SE, currently scheduled to be available August 2010.

Disable default SNMP community strings

Cisco Security Advisory cisco-sa-20100707-snmp provides detailed information about workarounds and mitigation techniques, including manually and automatically removing SNMP community strings.

Vendor Information

732671

Filter by status: All Affected Not Affected Unknown

Filter by content: __ Additional information available

__ Sort by: Status Alphabetical

Expand all

Javascript is disabled. Click here to view vendors.

Cisco Systems, Inc. __ Affected

Updated: July 12, 2010

Status

Affected

Vendor Statement

We have not received a statement from the vendor.

Vendor Information

Please see Cisco Security Advisory cisco-sa-20100707-snmp.

Vendor References

CVSS Metrics

Group Score Vector
Base
Temporal
Environmental

References

Acknowledgements

Information from Secunia and Cisco was used in this document.

This document was written by Michael Orlando.

Other Information

CVE IDs: CVE-2010-1574
Severity Metric: 5.93 Date Public:

Related

cisco 1
prion 1
securityvulns 2
cve 1
nessus 1
openvas 1
cisco
cisco
Hard-Coded SNMP Community Names in Cisco Industrial Ethernet 3000 Series Switches Vulnerability
2010-07-07 16:00:00
prion
prion
Code injection
2010-07-08 18:30:00
securityvulns
securityvulns
Cisco Security Advisory: Hard-Coded SNMP Community Names in Cisco Industrial Ethernet 3000 Series Switches Vulnerability
2010-07-11 00:00:00
Cisco Industrial Ethernet 3000 switches unauthorized access
2010-07-11 00:00:00
cve
cve
CVE-2010-1574
2010-07-08 18:30:00
nessus
nessus
SNMP Agent Default Community Names
2002-11-25 00:00:00
openvas
openvas
Report default community names of the SNMP Agent
2014-03-12 00:00:00

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.015 Low

EPSS

Percentile

86.9%

JSON
Related for VU:732671
cisco1prion1securityvulns2cve1nessus1openvas1