Cisco IOS ILMI Default Community String Remote DoS

2001-02-27T00:00:00
ID OSVDB:8820
Type osvdb
Reporter OSVDB
Modified 2001-02-27T00:00:00

Description

Vulnerability Description

By default, Cisco IOS versions that support ATM install with a default SNMP string of ILMI enabled. The ILMI SNMP string is publicly known and documented, though not documented by Cisco with the rest of the release. This allows attackers to trivially access the program or system, and to cause denial of service conditions at will.

Solution Description

Upgrade to the version appropriate for your installation, as outlined in the vulnerable version matrix provided by Cisco. It is also possible to correct the flaw by implementing the following workaround(s): Disable SNMP access to the router, or remove the ILMI community string and view.

Short Description

By default, Cisco IOS versions that support ATM install with a default SNMP string of ILMI enabled. The ILMI SNMP string is publicly known and documented, though not documented by Cisco with the rest of the release. This allows attackers to trivially access the program or system, and to cause denial of service conditions at will.

References:

Vendor Specific Advisory URL Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2001-03/0364.html ISS X-Force ID: 6169 CVE-2001-0711 CIAC Advisory: l-052 CERT VU: 976280 Bugtraq ID: 2427