SNMP: Orinoco SNMP Information Disclosure
This signature detects attempts to exploit a known vulnerability in the Orinoco Residential Gateway and Compaq WL310 access points. Attackers can send a maliciously crafted packet that queries the access point's unique SNMP community string to obtain sensitive information. Attackers can access (and possibly change) the access point system configuration, including Wired Equivalent Privacy (WEP) keys and Domain Name Service (DNS) information.
Extended Description
Orinoco is the manufacturer of various wireless network components, including access points and network cards. It is possible to remotely gain access to the identification string used for configuration of OEM access points manufactured by Orinoco through SNMP. By sending a custom-crafted SNMP query to a vulnerable access point, the access point will return system credentials, including the identification string. This identification string can be used as the administrative community string.
Affected Products
Proxim orinoco_residential_gateway_rg-1000
Short Name
SNMP:ENUM:ORINOCO-INFO1
Severity
Minor
Recommended
False
Recommended Action
None
Category
SNMP
Keywords
CVE-2002-0812 Disclosure Information Orinoco SNMP bid:5436
Release Date
04/22/2003
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3336
Port
UDP/192
False Positive
Unknown
Vendors
Proxim
Compaq
CVSS Score
6.4