Vulnerability Description
Cisco ubr900 series routers that conform to the Data-over-Cable Service Interface Specifications (DOCSIS) standard must ship without SNMP access restrictions, which can allow remote attackers to read and write information to the MIB using arbitrary community strings.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Cisco | Ubr920 | All versions |
| Cisco | Ubr924 | All versions |
| Cisco | Ubr925 | All versions |
References
- http://archives.neohapsis.com/archives/bugtraq/2001-12/0297.html
- http://archives.neohapsis.com/archives/vulnwatch/2002-q1/0002.html
- http://www.iss.net/security_center/static/7806.phpVendor Advisory
- http://www.securityfocus.com/bid/3758
- http://archives.neohapsis.com/archives/bugtraq/2001-12/0297.html
- http://archives.neohapsis.com/archives/vulnwatch/2002-q1/0002.html
- http://www.iss.net/security_center/static/7806.phpVendor Advisory
- http://www.securityfocus.com/bid/3758
FAQ
What is CVE-2001-1210?
CVE-2001-1210 is a vulnerability with a CVSS score of 6.4 (MEDIUM). Cisco ubr900 series routers that conform to the Data-over-Cable Service Interface Specifications (DOCSIS) standard must ship without SNMP access restrictions, which can allow remote attackers to read ...
How severe is CVE-2001-1210?
CVE-2001-1210 has been rated MEDIUM with a CVSS base score of 6.4/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2001-1210?
Check the references section above for vendor advisories and patch information. Affected products include: Cisco Ubr920, Cisco Ubr924, Cisco Ubr925.