RuggedCom Rugged Operating System < 3.12.4 (or 4.0 for RSG2488) Remote Denial of Service via SNMP

Medium

Synopsis

The remote host is running a vulnerable version of the RuggedCom Rugged Operating System (ROS).

Description

Versions earlier than 3.12.4 (or 4.0 for RSG2488) are vulnerable to a remote denial of service via the SNMP service without need for authentication. The specifics have not been released publicly, but patches are available from the vendor to fix this issue.

Solution

The vendor has released patches. Update to ROS version 3.12.4 or later, and ensure that access to this server is restricted to only trusted hosts/networks.