This script is Copyright (C) 2012 Tenable Network Security, Inc.
The remote networking device has an information disclosure
The remote host allows SNMP read-only access to either h3c-user.mib or
hh3c-user.mib. These MIBs contain information such as usernames,
passwords, and user privileges. A remote attacker with a valid
read-only community string could exploit this to enumerate usernames and
passwords, which could lead to administrative access to the device.
See also :
For HP devices, install the appropriate software update to fix this
issue. If an update is not available, use one of the workarounds listed
in the referenced advisories.
Risk factor :
Medium / CVSS Base Score : 5.0
CVSS Temporal Score : 3.7
Public Exploit Available : false
Nessus Plugin ID: 62759 ()
Bugtraq ID: 56183
CVE ID: CVE-2012-3268
The cookie settings on this website are set to 'allow all cookies' to give you the very best website experience. If you continue without changing these settings, you consent to this - but if you want, you can opt out of all cookies by clicking below.