Details of VAR-200108-0111

ID

VAR-200108-0111

CVE

CVE-2001-0711

TITLE

Cisco IOS ILMI SNMP Community String Vulnerability

Trust: 0.9

sources: BID: 2427 // CNNVD: CNNVD-200108-159

DESCRIPTION

Cisco IOS 11.x and 12.0 with ATM support allows attackers to cause a denial of service via the undocumented Interim Local Management Interface (ILMI) SNMP community string. There is a vulnerability in the remote management architecture for Asynchronous Transfer Mode (ATM) networking devices that permits unauthorized access to configuration information. An attacker who gains access to an affected device can read and modify its configuration, creating a denial-of-service condition, an information leak, or both. IOS is the operating system designed for various Cisco devices. It is maintained and distributed by Cisco systems. A problem in the versions of IOS 11.x and 12.0 could allow unauthorized access to certain configuration variables within a Cisco device. The ILMI SNMP Community string allows read and write access to system objects in the MIB-II community group. These configuration parameters do not affect the normal operation of the device, although if changed, can cause confusion or lead to a social engineering attack. It is possible for a malicious remote user to change configuration objects within the MIB-II Community, and rename the system, change the location name in the system, and/or the contact information for the system. This vulnerability affects only certain devices. There is a loophole in the SNMP implementation of IOS 11.x to 12.0 software, and remote attackers may use this loophole to obtain illegal access to the system

Trust: 2.7

sources: NVD: CVE-2001-0711 // CERT/CC: VU#976280 // JVNDB: JVNDB-2001-000033 // BID: 2427 // VULHUB: VHN-3520

AFFECTED PRODUCTS

vendor:	cisco	model:	ios	scope:	eq	version:	12.0	Trust: 2.7
vendor:	cisco	model:	ios	scope:	eq	version:	11	Trust: 1.6
vendor:	cisco	model:	ios	scope:	eq	version:	11.3	Trust: 1.1
vendor:	cisco	model:	ios	scope:	eq	version:	11.1	Trust: 1.1
vendor:	cisco	model:	ios	scope:	eq	version:	11.0	Trust: 1.1
vendor:	3 com	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	cisco	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	cisco	model:	ios	scope:	eq	version:	11.2	Trust: 0.8
vendor:	cisco	model:	ios 11.2 xa	scope:	-	version:	-	Trust: 0.6
vendor:	cisco	model:	ios	scope:	eq	version:	12.0xv	Trust: 0.3
vendor:	cisco	model:	ios 12.0xs	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.0xr	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.0xq	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.0xm	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.0xl	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.0xk	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.0xj	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.0xi	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.0xh	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.0xg	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.0xf	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.0xe	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.0xd	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.0xc	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.0xb	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.0xa	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.0wt	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.0w5	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.0t	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.0sx	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.0st	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.0sl	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.0sc	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.0s	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.0dc	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.0db	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.0da	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 11.3wa4	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 11.3t	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 11.3na	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 11.3ma	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 11.3db	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 11.3da	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 11.3aa	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 11.3 xa	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 11.2wa3	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 11.2sa	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 11.2p	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 11.2gs	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 11.2bc	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 11.1ia	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 11.1ct	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 11.1cc	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 11.1ca	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 11.1aa	scope:	-	version:	-	Trust: 0.3

sources: CERT/CC: VU#976280 // BID: 2427 // JVNDB: JVNDB-2001-000033 // CNNVD: CNNVD-200108-159 // NVD: CVE-2001-0711

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2001-0711
value:	MEDIUM
Trust: 1.0
CARNEGIE MELLON:	VU#976280
value:	54.68
Trust: 0.8
NVD:	CVE-2001-0711
value:	MEDIUM
Trust: 0.8
CNNVD:	CNNVD-200108-159
value:	MEDIUM
Trust: 0.6
VULHUB:	VHN-3520
value:	MEDIUM
Trust: 0.1

nvd@nist.gov:	CVE-2001-0711
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:N/I:N/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.8
VULHUB:	VHN-3520
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:N/I:N/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

sources: CERT/CC: VU#976280 // VULHUB: VHN-3520 // JVNDB: JVNDB-2001-000033 // CNNVD: CNNVD-200108-159 // NVD: CVE-2001-0711

PROBLEMTYPE DATA

problemtype:

NVD-CWE-Other

Trust: 1.0

sources: NVD: CVE-2001-0711

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-200108-159

TYPE

access verification error

Trust: 0.6

sources: CNNVD: CNNVD-200108-159

CONFIGURATIONS

sources: JVNDB: JVNDB-2001-000033

EXPLOIT AVAILABILITY

sources: VULHUB: VHN-3520

PATCH

title:	ios-snmp-ilmi-vuln-pub	url:	http://www.cisco.com/warp/public/707/ios-snmp-ilmi-vuln-pub.shtml	Trust: 0.8
title:	2001-03-17-00	url:	http://www.cisco.com/japanese/warp/public/3/jp/service/tac/707/ios-snmp-ilmi-vuln-pub-j.shtml	Trust: 0.8

sources: JVNDB: JVNDB-2001-000033

EXTERNAL IDS

db:	NVD	id:	CVE-2001-0711	Trust: 2.8
db:	BID	id:	2427	Trust: 2.0
db:	CERT/CC	id:	VU#976280	Trust: 0.8
db:	JVNDB	id:	JVNDB-2001-000033	Trust: 0.8
db:	CNNVD	id:	CNNVD-200108-159	Trust: 0.7
db:	XF	id:	6169	Trust: 0.6
db:	CISCO	id:	20010207 CISCO IOS SOFTWARE SNMP READ-WRITE ILMI COMMUNITY STRING VULNERABILITY	Trust: 0.6
db:	EXPLOIT-DB	id:	20652	Trust: 0.1
db:	SEEBUG	id:	SSVID-74521	Trust: 0.1
db:	VULHUB	id:	VHN-3520	Trust: 0.1

sources: CERT/CC: VU#976280 // VULHUB: VHN-3520 // BID: 2427 // JVNDB: JVNDB-2001-000033 // CNNVD: CNNVD-200108-159 // NVD: CVE-2001-0711

REFERENCES

url:	http://www.cisco.com/warp/public/707/ios-snmp-ilmi-vuln-pub.shtml	Trust: 2.5
url:	http://www.securityfocus.com/bid/2427	Trust: 1.6
url:	https://exchange.xforce.ibmcloud.com/vulnerabilities/6169	Trust: 1.1
url:	http://www.cisco.com/univercd/cc/td/doc/product/wanbu/8850r2/rel201/pnni/objects.htm	Trust: 0.8
url:	http://www.cisco.com/univercd/cc/td/doc/product/software/ios113ed/ios113p/113tcavs.htm	Trust: 0.8
url:	http://www.protocols.com/pbook/ilmi.htm	Trust: 0.8
url:	http://www.atmdigest.com/pnni.htm	Trust: 0.8
url:	http://www.ncne.nlanr.net/news/workshop/vbns-techs2/talks/mheld/	Trust: 0.8
url:	http://cell-relay.indiana.edu/cell-relay/faq/dictionary/i/ilmi.html	Trust: 0.8
url:	http://www-comm.itsi.disa.mil/atmf/pnni.html	Trust: 0.8
url:	ftp://ftp.atmforum.com/pub/approved-specs/af-ilmi-0065.000.pdf	Trust: 0.8
url:	ftp://ftp.atmforum.com/pub/approved-specs/	Trust: 0.8
url:	http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2001-0711	Trust: 0.8
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2001-0711	Trust: 0.8
url:	http://xforce.iss.net/static/6169.php	Trust: 0.6

sources: CERT/CC: VU#976280 // VULHUB: VHN-3520 // JVNDB: JVNDB-2001-000033 // CNNVD: CNNVD-200108-159 // NVD: CVE-2001-0711

CREDITS

Cisco Security Advisory

Trust: 0.6

sources: CNNVD: CNNVD-200108-159

SOURCES

db:	CERT/CC	id:	VU#976280
db:	VULHUB	id:	VHN-3520
db:	BID	id:	2427
db:	JVNDB	id:	JVNDB-2001-000033
db:	CNNVD	id:	CNNVD-200108-159
db:	NVD	id:	CVE-2001-0711

LAST UPDATE DATE

2024-08-14T14:23:16.634000+00:00

SOURCES UPDATE DATE

db:	CERT/CC	id:	VU#976280	date:	2002-03-05T00:00:00
db:	VULHUB	id:	VHN-3520	date:	2017-12-19T00:00:00
db:	BID	id:	2427	date:	2009-07-11T04:46:00
db:	JVNDB	id:	JVNDB-2001-000033	date:	2007-04-01T00:00:00
db:	CNNVD	id:	CNNVD-200108-159	date:	2005-10-20T00:00:00
db:	NVD	id:	CVE-2001-0711	date:	2017-12-19T02:29:26.113

SOURCES RELEASE DATE

db:	CERT/CC	id:	VU#976280	date:	2001-05-01T00:00:00
db:	VULHUB	id:	VHN-3520	date:	2001-08-31T00:00:00
db:	BID	id:	2427	date:	2001-02-27T00:00:00
db:	JVNDB	id:	JVNDB-2001-000033	date:	2007-04-01T00:00:00
db:	CNNVD	id:	CNNVD-200108-159	date:	2001-03-09T00:00:00
db:	NVD	id:	CVE-2001-0711	date:	2001-08-31T04:00:00