Support
Eng
òÕÓ
Company
Home
Services
Solutions
Documentation
News and Events
 
 
 
Knowledgebase
Downloads
Glossary
Ask a Question
Search:     Advanced search
SHALB.com / Security Knowledgebase / Network Security / SNMP / Default community names of the SNMP Agent
server monitoring

Default community names of the SNMP Agent
Article ID: 10264
Last updated: 27 Jan, 2009
Print
Email to friend
Views: 667
Posted: 22 Jan, 2009
by: Tech Pubs S.
Updated: 27 Jan, 2009
by: Tech Pubs S.

Default community names of the SNMP Agent
This script is Copyright (C) 2005-2007 Tenable Network Security

FamilySNMP
Plugin ID10264
Bugtraq ID11237
10576
177
2112
6825
7081
7212
7317
9681
986
CVE IDCVE-1999-0186
CVE-1999-0254
CVE-1999-0516
CVE-1999-0517
CVE-2004-0311
CVE-2004-1474

Description:

Synopsis :

The community name of the remote SNMP server can be guessed.

Description :

It is possible to obtain the default community names of the remote
SNMP server.

An attacker may use this information to gain more knowledge about
the remote host, or to change the configuration of the remote
system (if the default community allow such modifications).

Solution :

Disable the SNMP service on the remote host if you do not use it,
filter incoming UDP packets going to this port, or change the
default community string.

Risk factor :

Medium / CVSS Base Score : 5.0
(CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N)
This article was:   Helpful | Not Helpful
Prev   Next
Default Unix Accounts     Enumerate Lanman shares via SNMP

server monitoring

¿ 2010 "SHALB.com" All rights reserved
SHALB Home
Services
Solutions
Documentation
News and Events