CVE-2006-4950 Information
Description
Cisco IOS 12.2 through 12.4 before 20060920 as used by Cisco IAD2430 IAD2431 and IAD2432 Integrated Access Devices the VG224 Analog Phone Gateway and the MWR 1900 and 1941 Mobile Wireless Edge Routers is incorrectly identified as supporting DOCSIS which allows remote attackers to gain read-write access via a hard-coded cable-docsis community string and read or modify arbitrary SNMP variables.
Reference
http://secunia.com/advisories/21974 http://securitytracker.com/id?1016899 http://www.cisco.com/warp/public/707/cisco-sa-20060920-docsis.shtml http://www.kb.cert.org/vuls/id/123140 http://www.osvdb.org/29034 http://www.securityfocus.com/bid/20125 http://www.vupen.com/english/advisories/2006/3722 https://exchange.xforce.ibmcloud.com/vulnerabilities/29054 https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A5665
Share on: