9.3

CVE-2008-3807

Cisco IOS 12.2 and 12.3 on Cisco uBR10012 series devices, when linecard redundancy is configured, enables a read/write SNMP service with "private" as the community, which allows remote attackers to obtain administrative access by guessing this community and sending SNMP requests.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
CiscoIos Version12.2bc
CiscoIos Version12.2cx
CiscoIos Version12.2cy
CiscoIos Version12.2xf
CiscoIos Version12.3bc
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 3.5% 0.877
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 9.3 8.6 10
AV:N/AC:M/Au:N/C:C/I:C/A:C
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://secunia.com/advisories/31990
Third Party Advisory
http://www.vupen.com/english/advisories/2008/2670
Permissions Required
http://www.cisco.com/en/US/products/products_security_advisory09186a0080a014b1.shtml
Vendor Advisory
http://www.securitytracker.com/id?1020941
Third Party Advisory
Broken Link
VDB Entry
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5452
Third Party Advisory