vendor:
BT Voyager 2000 Wireless ADSL Router
by:
5.5
CVSS
MEDIUM
Sensitive Information Disclosure
200
CWE
Product Name: BT Voyager 2000 Wireless ADSL Router
Affected Version From:
Affected Version To:
Patch Exists: NO
Related CWE:
CPE: h:bt:voyager_2000_wireless_adsl_router
Platforms Tested:
BT Voyager 2000 Wireless ADSL Router Sensitive Information Disclosure
The BT Voyager 2000 Wireless ADSL Router is prone to a sensitive information disclosure vulnerability. 'Public' SNMP MIB community strings, which are world-readable by default, contain sensitive information related to the internal protected network. This vulnerability can be exploited to collect data that can be used in further attacks against the victim network.
Mitigation:
It is recommended to change the default SNMP MIB community strings to prevent unauthorized access and sensitive information disclosure. Additionally, restricting SNMP access to trusted hosts can also mitigate this vulnerability.