DOCSIS Read-Write Community String Enabled in Non-DOCSIS Platforms
Critical Nessus Plugin ID 17782
SynopsisThe remote device is missing a vendor-supplied security patch.
DescriptionVulnerable versions of Cisco IOS contain a default hard-coded community string when SNMP is enabled on the device. An additional read-write community string may be enabled if the device is configured for SNMP management, which would allow privilege access to the device.
SolutionApply the relevant patch referenced in Cisco Security Advisory cisco-sa-20060920-docsis.