CVE-2010-1574
First published: Thu Jul 08 2010(Updated: )
IOS 12.2(52)SE and 12.2(52)SE1 on Cisco Industrial Ethernet (IE) 3000 series switches has (1) a community name of public for RO access and (2) a community name of private for RW access, which makes it easier for remote attackers to modify the configuration or obtain potentially sensitive information via SNMP requests, aka Bug ID CSCtf25589.
Credit: ykramarz@cisco.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cisco IOS | =12.2\(52\)se | |
| Cisco IOS | =12.2\(52\)se1 | |
| Cisco IE 3000-4tc Industrial Ethernet switch |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://securitytracker.com/id?1024173
- http://www.securityfocus.com/bid/41436
- http://secunia.com/advisories/40407
- http://www.cisco.com/en/US/products/products_security_advisory09186a0080b3891f.shtml
- http://osvdb.org/66120
- http://www.vupen.com/english/advisories/2010/1754
- http://www.kb.cert.org/vuls/id/732671
- https://exchange.xforce.ibmcloud.com/vulnerabilities/60145
- collector/nvd-historical
- agent/type
- agent/references
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/last-modified-date
- agent/weakness
- agent/author
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/cisco
- canonical/cisco ios
- version/cisco ios/12.2\(52\)se
- version/cisco ios/12.2\(52\)se1
- canonical/cisco ie 3000-4tc industrial ethernet switch