Massive SNMP vulnerability reports
Hal Pomeranz
hal at deer-run.com
Tue Feb 12 16:49:39 PST 2002
Many of you have already seen this, but I think it needs the widest
dissemination possible.
CERT Advisory 2002-03 (http://www.cert.org/advisories/CA-2002-03.html)
describes a suite of buffer overflow and denial-of-service attacks
against the SNMP implementations used by essentially every vendor of
network-capable devices. Disable SNMP, block the SNMP ports at your
firewall (most critical are 161 and 162, tcp and udp-- the CERT
Advisory lists other less commonly used ports), and obtain patches
from your vendor.
Do it now.
--
Hal Pomeranz, Founder/CEO Deer Run Associates hal at deer-run.com
Network Connectivity and Security, Systems Management, Training
More information about the Baylisa
mailing list