header-logo
Suggest Exploit
vendor:
BEFVP4 VPN Router and BEFSR81 Appliance
by:
SecurityFocus
7.5
CVSS
HIGH
Information Disclosure
200
CWE
Product Name: BEFVP4 VPN Router and BEFSR81 Appliance
Affected Version From: N/A
Affected Version To: N/A
Patch Exists: NO
Related CWE: N/A
CPE: N/A
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2002

Linksys BEFVP4 VPN Router SNMP Information Disclosure Vulnerability

It has been reported that SNMP community strings which, are world readble by default, contain sensitive information pertaining to the internal protected network. Data collected in this manner may be used in further attacks against the victim network.

Mitigation:

Ensure that SNMP community strings are not world readable and are properly secured.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/7317/info

Linksys BEFVP4 VPN router has been reported prone to a sensitive information disclosure vulnerability.

It has been reported that SNMP community strings which, are world readble by default, contain sensitive information pertaining to the internal protected network.

Data collected in this manner may be used in further attacks against the victim network.

It should be noted that this issue has also been reported to affect the Linksys BEFSR81 appliance. 

snmpwalk -v 1 -c public {ip}

Navigation

Suggest Exploit

Services By CQR