发布时间 :2000-05-16 00:00:00
修订时间 :2008-09-10 15:04:16

[原文]The Netopia R9100 router does not prevent authenticated users from modifying SNMP tables, even if the administrator has configured it to do so.

[CNNVD]Netopia DSL路由器漏洞(CNNVD-200005-056)

        The Netopia R9100路由器没能阻止合法用户修改SNMP表,即使管理员通过配置路由器要求它这样做也无效。

- CVSS (基础分值)

CVSS分值: 3.6 [轻微(LOW)]
机密性影响: PARTIAL [很可能造成信息泄露]
完整性影响: PARTIAL [可能会导致系统文件被修改]
可用性影响: NONE [对系统可用性无影响]
攻击复杂度: LOW [漏洞利用没有访问限制 ]
攻击向量: LOCAL [漏洞利用需要具有物理访问权限或本地帐户]
身份认证: NONE [漏洞利用无需身份认证]

- CPE (受影响的平台与产品)


- OVAL (用于检测的技术细节)


- 官方数据库链接
(官方数据源) MITRE
(官方数据源) NVD
(官方数据源) CNNVD

- 其它链接及资源
(VENDOR_ADVISORY)  BUGTRAQ  20000507 Advisory: Netopia R9100 router vulnerability
(UNKNOWN)  BID  1177

- 漏洞信息

Netopia DSL路由器漏洞
低危 访问验证错误
2000-05-16 00:00:00 2005-05-02 00:00:00
        The Netopia R9100路由器没能阻止合法用户修改SNMP表,即使管理员通过配置路由器要求它这样做也无效。

- 公告与补丁

        Download version 4.6.3 of the firmware.
        Netopia R-series routers 4.6.2

- 漏洞信息 (19901)

Netopia R-series routers 4.6.2 Vulnerability (EDBID:19901)
hardware remote
2000-05-16 Verified
0 Stephen Friedl
N/A [点击下载]

All R-series platforms with firmware between 4.3.8 and 4.6.2 (inclusive) allow users who already have access to the router to modify SNMP tables which they should not be able to access. The router has a command-line mode that is reached by typing control-N after the user has passed the intial login test. At the "#" prompt one can then do most management of the device. This includes the setting of SNMP community strings in spite of the limitation imposed by the administrator. 

The following devices are confirmed as vulnerable: 

R2020 Dual Analog Router
R3100 ISDN Router
R3100-I ISDL Router
R3100-T IDSL router for Covad
R3232-I IDSL 4-IMUX router
R5100 Serial router
R5200 DDS router
R5220 DDS router w/ V.90 backup
R5300 T1 router
R5320 T1 router w/ V.90 backup
R5331 T1 router w/ ISDN backup
R7100-C SDSL router
R7120 SDSL Router w/int V.90
R7131 SDSL router w/int ISDN
R7171 SDSL 2x IMUX router
R7200-T SDSL router for Covad
R7220 SDSL router w/int.V.90
R7231 SDSL router w/int ISDN
R9100 Ethernet-to-ethernet Router

# set snmp community RO wookie
# set snmp community RW wookie

The exploit can only be attempted by those with existing access login to the device.		

- 漏洞信息

Netopia DSL Router SNMP Table Modification

- 漏洞描述

Unknown or Incomplete

- 时间线

2000-05-09 Unknow
Unknow Unknow

- 解决方案

Unknown or Incomplete

- 相关参考

- 漏洞作者

Unknown or Incomplete