Receive instant 1:1 support from technology experts, using our real-time conversation and whiteboard interface. Your first 5 minutes are always free.
THREAT: Simple Network Management Protocol (SNMP) is an "Interrnet-standard protocol for managing devices on IP networks." The authentication of clients of earlier versions of SNMP is performed only by a "community string", in effect a type of password, which is transmitted in cleartext. All Servers Vulnerabilities by level page 29 The Internet Engineering Task Force (IETF) has designated SNMPv3 a full Internet standard, the highest maturity level for an RFC. It considers earlier versions to be obsolete designating them ("Historic"). (http://www.ietf.org/rfc/rfc3410.txt) IMPACT: The system is at high risk of being exposed to security vulnerabilities. Since the vendor no longer provides updates, obsolete software is more vulnerable to viruses and other attacks. SOLUTION: Disable or remove SNMPv1/2c authentication. Use SNMP version 3 authentication