Foundry Networks EdgeIron SNMP Community String Read-Write Vulnerability

EdgeIron switches are high-performance, enterprise-level layer two devices for local area network switching. They are distributed and maintained by Foundry Networks.

It is possible for remote users to write to arbitrary SNMP objects. This is due to EdgeIron switches accepting any community string as a read and write string. By providing a community string of any value with a known SNMP object value, a remote user may alter the contents of the SNMP object.


 

Privacy Statement
Copyright 2010, SecurityFocus