Home ▼ Bookkeeping
Online ▼ Security
Audits ▼
Managed
DNS ▼
About
Order
FAQ
Acceptable Use Policy
Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password Network
Monitor ▼
Enterprise Package
Advanced Package
Standard Package
Free Trial
FAQ
Price/Feature Summary
Order/Renew
Examples
Configure/Status Alert Profiles | |||
CVE ID: | CVE-2010-1574 |
Description: | IOS 12.2(52)SE and 12.2(52)SE1 on Cisco Industrial Ethernet (IE) 3000 series switches has (1) a community name of public for RO access and (2) a community name of private for RW access, which makes it easier for remote attackers to modify the configuration or obtain potentially sensitive information via SNMP requests, aka Bug ID CSCtf25589. |
Test IDs: | None available |
Cross References: |
Common Vulnerability Exposure (CVE) ID: CVE-2010-1574 BugTraq ID: 41436 http://www.securityfocus.com/bid/41436 CERT/CC vulnerability note: VU#732671 http://www.kb.cert.org/vuls/id/732671 Cisco Security Advisory: 20100707 Hard-Coded SNMP Community Names in Cisco Industrial Ethernet 3000 Series Switches Vulnerability http://www.cisco.com/en/US/products/products_security_advisory09186a0080b3891f.shtml http://osvdb.org/66120 http://securitytracker.com/id?1024173 http://secunia.com/advisories/40407 http://www.vupen.com/english/advisories/2010/1754 XForce ISS Database: cisco-industrial-snmp-unauth-access(60145) https://exchange.xforce.ibmcloud.com/vulnerabilities/60145 |