| New User, Welcome! Login |
Re: Leak of SNMP write password via SNMP read community in NETGEAR WG102 - Prosafe 802.11g Access Point
| From: |
Simon Richter <Simon Richter hogyros de> |
| To: |
mad-vaittes ida ing tu-bs de |
| Cc: |
bugtraq securityfocus com |
| Subject: |
Re: Leak of SNMP write password via SNMP read community in NETGEAR WG102 - Prosafe 802.11g Access Point |
| Date: |
Fri - Jan 09, 2009 08:08 AM |
Hi,
> WG102 offers the the typical SNMP write & SNMP read community password 'protection'.
SNMP communities are a safety, not a security measure. I know of very few
SNMP implementations that have protections against brute force or
dictionary attacks.
> Proposed fixes:
> do not enable SNMP at all. vendor fix required.
This AP can use VLAN tagging to separate management traffic from user data,
which is generally a good idea in any environment.
Simon
|
|
|
Copyright © 1995-2012 LinuxRocket.net. All rights reserved.
Nearly all of LinuxRocket's features are free. Be kind and donate to the cause!
