SNMP: Interim Local Management Interface (ILMI)

This signature detects the SNMP Community string "ILMI." This can allow an attacker to read/write to several different OID's on ATM enabled Cisco Devices.

Extended Description

IOS is the operating system designed for various Cisco devices. It is maintained and distributed by Cisco systems. A problem in the versions of IOS 11.x and 12.0 could allow unauthorized access to certain configuration variables within a Cisco device. The ILMI SNMP Community string allows read and write access to system objects in the MIB-II community group. These configuration parameters do not affect the normal operation of the device, although if changed, can cause confusion or lead to a social engineering attack. It is possible for a malicious remote user to change configuration objects within the MIB-II Community, and rename the system, change the location name in the system, and/or the contact information for the system. This vulnerability affects only certain devices.

Affected Products

Cisco ios

Short Name
SNMP:COMMUNITY:ILMI
Severity
Minor
Recommended
False
Recommended Action
None
Category
SNMP
Keywords
(ILMI) CVE-2001-0711 Interface Interim Local Management bid:2427
Release Date
12/14/2004
Supported Platforms

srx-branch-12.3

srx-19.3

srx-branch-19.3

vsrx3bsd-19.2

srx-branch-19.4

vsrx-19.4

mx-12.3

mx-19.4

vmx-19.4

mx-19.3

vsrx3bsd-19.4

srx-19.4

vsrx-12.3

vmx-19.3

vsrx-19.2

srx-12.3

Sigpack Version
3375
False Positive
Unknown
Vendors

Cisco

CVSS Score

5.0

Found a potential security threat?