Vulnerability Description
Cisco IOS 12.0(5)XU through 12.1(2) allows remote attackers to read system administration and topology information via an "snmp-server host" command, which creates a readable "community" community string if one has not been previously created.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Cisco | Ios | 12.0 |
References
- http://www.cisco.com/warp/public/707/ios-snmp-community-vulns-pub.shtmlVendor Advisory
- http://www.kb.cert.org/vuls/id/848944US Government Resource
- https://exchange.xforce.ibmcloud.com/vulnerabilities/6178
- http://www.cisco.com/warp/public/707/ios-snmp-community-vulns-pub.shtmlVendor Advisory
- http://www.kb.cert.org/vuls/id/848944US Government Resource
- https://exchange.xforce.ibmcloud.com/vulnerabilities/6178
FAQ
What is CVE-2001-1434?
CVE-2001-1434 is a vulnerability with a CVSS score of 5.0 (MEDIUM). Cisco IOS 12.0(5)XU through 12.1(2) allows remote attackers to read system administration and topology information via an "snmp-server host" command, which creates a readable "community" community str...
How severe is CVE-2001-1434?
CVE-2001-1434 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2001-1434?
Check the references section above for vendor advisories and patch information. Affected products include: Cisco Ios.