header-logo
Suggest Exploit
vendor:
IOS
by:
SecurityFocus
3.3
CVSS
MEDIUM
ILMI SNMP Community String
200
CWE
Product Name: IOS
Affected Version From: IOS 11.x
Affected Version To: IOS 12.0
Patch Exists: YES
Related CWE: CVE-2001-0206
CPE: o:cisco:ios
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: None
2001

IOS ILMI SNMP Community String Vulnerability

A vulnerability in the versions of IOS 11.x and 12.0 could allow unauthorized access to certain configuration variables within a Cisco device. The ILMI SNMP Community string allows read and write access to system objects in the MIB-II community group. These configuration parameters do not affect the normal operation of the device, although if changed, can cause confusion or lead to a social engineering attack. It is possible for a malicious remote user to change configuration objects within the MIB-II Community, and rename the system, change the location name in the system, and/or the contact information for the system.

Mitigation:

To mitigate this vulnerability, users should ensure that the ILMI SNMP Community string is not enabled on their Cisco devices.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/2427/info

IOS is the operating system designed for various Cisco devices. It is maintained and distributed by Cisco systems.

A problem in the versions of IOS 11.x and 12.0 could allow unauthorized access to certain configuration variables within a Cisco device. The ILMI SNMP Community string allows read and write access to system objects in the MIB-II community group. These configuration parameters do not affect the normal operation of the device, although if changed, can cause confusion or lead to a social engineering attack.

It is possible for a malicious remote user to change configuration objects within the MIB-II Community, and rename the system, change the location name in the system, and/or the contact information for the system. This vulnerability affects only certain devices.

snmpwalk router ILMI |more

Navigation

Suggest Exploit

Services By CQR