BMC SNMP Agent Default Community Name (public)

This script is Copyright (C) 2010-2011 Tenable Network Security, Inc.


Synopsis :

The community name of the remote SNMP server is set to 'public'.

Description :

The remote SNMP server, listening on port 8161 (probably part of BMC
Patrol) has a community name set to 'public'.

An attacker may use this information to gain more knowledge about the
remote host or to change the configuration of the remote system (if
the default community allow such modifications).

Solution :

Configure BMC patrol to disable SNMP or change the community to
something hard to guess.

Risk factor :

High / CVSS Base Score : 7.5
(CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P)
CVSS Temporal Score : 6.2
(CVSS2#E:F/RL:OF/RC:C)
Public Exploit Available : true

Family: SNMP

Nessus Plugin ID: 51160 ()

Bugtraq ID:

CVE ID: