[原文]Cisco IOS 12.1(3) and 12.1(3)T allows remote attackers to read and modify device configuration data via the cable-docsis read-write community string used by the Data Over Cable Service Interface Specification (DOCSIS) standard.
Cisco IOS cable-docsis Default SNMP Community String
Remote / Network Access
Loss of Integrity
By default, Cisco IOS contains a default cable-docsis read-write community string, which is publicly known and documented. A remote attacker can read and modify the configuration on the affected device resulting in a loss of integrity.
Upgrade to 12.1(4) and 12.1(5)T releases, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.