CVE-2002-0812

Name of the Vulnerable Software and Affected Versions: Compaq WL310 (affected versions not specified) Orinoco Residential Gateway access point (affected versions not specified)

Description: The issue concerns an information leak that allows remote attackers to obtain and modify sensitive configuration information. This is possible because a system identification string is used as a default SNMP read/write community string. By querying for the identification string, attackers can access and alter sensitive data.

Recommendations: For Compaq WL310, change the default SNMP read/write community string to a unique and secure value. For Orinoco Residential Gateway access point, update the configuration to use a custom SNMP read/write community string instead of the default system identification string. As a temporary workaround, consider restricting access to the SNMP service until a secure community string is configured.