Massive SNMP vulnerability reports

• Previous message: Linux/Unix/Win2K domian in the small enterprise
• Next message: SIG-beer-west on Saturday, February 16th
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Many of you have already seen this, but I think it needs the widest
dissemination possible.

CERT Advisory 2002-03 (http://www.cert.org/advisories/CA-2002-03.html)
describes a suite of buffer overflow and denial-of-service attacks
against the SNMP implementations used by essentially every vendor of
network-capable devices.  Disable SNMP, block the SNMP ports at your
firewall (most critical are 161 and 162, tcp and udp-- the CERT
Advisory lists other less commonly used ports), and obtain patches
from your vendor.  

Do it now.

-- 
Hal Pomeranz, Founder/CEO       Deer Run Associates       hal at deer-run.com
     Network Connectivity and Security, Systems Management, Training

• Previous message: Linux/Unix/Win2K domian in the small enterprise
• Next message: SIG-beer-west on Saturday, February 16th
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]