UPDATE/DETAILS Re: SNMP full access backdoor on IOS

From: Troy Rader (troy@xxxxxxxxxx)
Date: Mon Feb 26 2001 - 18:17:28 GMT-3

• Next message: Mask Of Zorro: "Re: San Jose LAB"
• Previous message: Yurchenko, Michael: "RE: San Jose LAB"
• Next in thread: Mike Bernico: "RE: UPDATE/DETAILS Re: SNMP full access backdoor on IOS"
• Maybe reply: Mike Bernico: "RE: UPDATE/DETAILS Re: SNMP full access backdoor on IOS"
• Maybe reply: Jay Hennigan: "Re: UPDATE/DETAILS Re: SNMP full access backdoor on IOS"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

   
All,

I'm told this is a somewhat limited backdoor. It is not full SNMP access,
only access to LANE & PNNI mib variables, the sysname, loc, and contact. It
is resolved either with IOS upgrades, or some Cisco recommended config
changes.

I consider this information very reliable. Has anyone heard differently?

Troy

----- Original Message -----
From: "Rich Russell" <rich@thetestpage.net>
To: <ccielab@groupstudy.com>
Sent: Monday, February 26, 2001 11:57 AM
Subject: SNMP full access backdoor on IOS

> Did anyone else here about the backdoor with the community string of ILMI
> for all IOS's under 12.1.4s??
>
> Major security whole.
>
> www.thetestpage.net
> downloadable tests and router rack available
>

• Next message: Mask Of Zorro: "Re: San Jose LAB"
• Previous message: Yurchenko, Michael: "RE: San Jose LAB"
• Next in thread: Mike Bernico: "RE: UPDATE/DETAILS Re: SNMP full access backdoor on IOS"
• Maybe reply: Mike Bernico: "RE: UPDATE/DETAILS Re: SNMP full access backdoor on IOS"
• Maybe reply: Jay Hennigan: "Re: UPDATE/DETAILS Re: SNMP full access backdoor on IOS"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Thu Jun 13 2002 - 10:29:03 GMT-3