SNMP: Avaya Cajun Default Community String
This signature detects attempts to exploit a known vulnerability in the firmware for the Avaya Cajun P33x series hardware. Firmware for Avaya P130, M770-ATM, and M770 Supervisor M-SPX and M-SPS is vulnerable. Attackers with SNMP access can use an undocumented read/write community string to remotely administer the hardware.
Extended Description
Firmware for the Avaya Cajun line of network switches includes a default read/write community string. Remote attackers may use the community string to view/set potentially sensitive properties within the device. Denial of service, potential network compromise possible.
Affected Products
Avaya m-spx
Short Name
SNMP:COMMUNITY:AVAYA-DEFCOM1
Severity
Major
Recommended
False
Recommended Action
Drop
Category
SNMP
Keywords
Avaya CVE-2002-1448 Cajun Community Default String bid:5396
Release Date
04/22/2003
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3375
False Positive
Unknown
Vendors
Avaya
CVSS Score
7.5