Visit our newest sister site!
Hundreds of free aircraft flight manuals
Civilian • Historical • Military • Declassified • FREE!

TUCoPS :: Network Appliances :: olicom1.htm

Olicom/crosscomm routers Inappropriate Permissions

    olicom/crosscomm routers


    olicom/crosscomm routers


    Jacek Lipkowski found following.  Crosscomm/Olicom routers have  a
    undocumented community string ILMI, the same as in cisco:

    that has read and write permissions (didn't check the whole  tree,
    but  you  can  set  system.sysContact.0  for  example).   This was
    checked on  a XLT-F  router with  software 'XL  80 IM  Version 5.5
    Build Level 2' (this was what it reported via snmp).

    You can consider this a serious vulnerability, because people will
    find it while looking for vulnerable cisco routers.


    The vendor hasn't been notified, as it doesn't exist (olicom  sold
    their router  business to  Intel, don't  know what  happened to it

TUCoPS is optimized to look best in Firefox® on a widescreen monitor (1440x900 or better).
Site design & layout copyright © 1986-2015 AOH