PT-2001-2527 · Cisco · Cisco Ios

Published

2001-02-28

Updated

2017-07-11

CVE-2001-1434

CVSS v2.0

5.0

Medium

Vector

AV:N/AC:L/Au:N/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions Cisco IOS versions 12.0(5)XU through 12.1(2)

Description The issue allows remote attackers to read system administration and topology information. This is achieved via an "snmp-server host" command, which creates a readable community string if one has not been previously created.

Recommendations For versions 12.0(5)XU through 12.1(2), consider restricting access to the SNMP server to minimize the risk of exploitation. As a temporary workaround, avoid using the snmp-server host command until a patch is available.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2001-1434

Affected Products

Cisco Ios

PT-2001-2527 · Cisco · Cisco Ios

CVE-2001-1434

Related Identifiers

Affected Products

References · 4