CVE-2008-6976

Common vulnerabilities & exposures (CVE)

CVE database CVE database blogpost Release & EoL database

Published at: - 19-08-2009 07:24

Last modified: - 09-02-2022 08:31

Total changes: - 2

Description

MikroTik RouterOS 3.x through 3.13 and 2.x through 2.9.51 allows remote attackers to modify Network Management System (NMS) settings via a crafted SNMP set request.

Common Vulnerability Scoring System (CVSS)

AV:N/AC:L/Au:N/C:P/I:P/A:N

Low

Attack complexity

Network

Attack vector

None

Availability

Low

Confidentiality

Low

Integrity

Privileges required

Scope

User interaction

6.4

Base score

10.0

4.9

Exploitability score

Impact score

Verification logic

vendor=mikrotik AND product=routeros AND versionEndIncluding=2.9.51 AND versionStartIncluding=2.0

vendor=mikrotik AND product=routeros AND versionEndIncluding=3.13 AND versionStartIncluding=3.0

Reference

31025-Exploit, Third Party Advisory, VDB Entry
routeros-snmp-security-bypass(44944)-Third Party Advisory, VDB Entry
6366-Exploit, Third Party Advisory, VDB Entry

Keywords

CVE-2008-6976

Common vulnerabilities & exposures (CVE)

Description

Common Vulnerability Scoring System (CVSS)

Verification logic

Reference

NVD

CVE-2008-6976

CVE

Common vulnerabilities & exposures

CVSS

Common vulnerability scoring system

Security

Vulnerabilities

Exposures