Description
Cisco VACM (View-based Access Control MIB) for Catalyst Operating Software (CatOS) 5.5 and 6.1 and IOS 12.0 and 12.1 allows remote attackers to read and modify device configuration via the read-write community string.
Product(s):
- Cisco CatOS 5.5
- Cisco CatOS 6.1
- Cisco IOS 12.0DA
- Cisco IOS 12.0DB
- Cisco IOS 12.0DC
- Cisco IOS 12.0S
- Cisco IOS 12.0SC
- Cisco IOS 12.0SL
- Cisco IOS 12.0ST
- Cisco IOS 12.0T
- Cisco IOS 12.0XA
- Cisco IOS 12.0XB
- Cisco IOS 12.0XC
- Cisco IOS 12.0XD
- Cisco IOS 12.0XE
- Cisco IOS 12.0XF
- Cisco IOS 12.0XG
- Cisco IOS 12.0XH
- Cisco IOS 12.0XI
- Cisco IOS 12.0XJ
- Cisco IOS 12.0XK
- Cisco IOS 12.0XL
- Cisco IOS 12.0XM
- Cisco IOS 12.0XN
- Cisco IOS 12.0XP
- Cisco IOS 12.0XQ
- Cisco IOS 12.0XR
- Cisco IOS 12.0XS
- Cisco IOS 12.0XU
- Cisco IOS 12.0Xv
- Cisco IOS 12.0 XW
- Cisco IOS 12.1
- Cisco IOS 12.1AA
- Cisco IOS 12.1CX
- Cisco IOS 12.1DA
- Cisco IOS 12.1DB
- Cisco IOS 12.1DC
- Cisco IOS 12.1E
- Cisco IOS 12.1EA
- Cisco IOS 12.1EC
- Cisco IOS 12.1EX
- Cisco IOS 12.1T
- Cisco IOS 12.1XA
- Cisco IOS 12.1XB
- Cisco IOS 12.1XC
- Cisco IOS 12.1XD
- Cisco IOS 12.1XE
- Cisco IOS 12.1XF
- Cisco IOS 12.1XG
- Cisco IOS 12.1XH
- Cisco IOS 12.1XI
- Cisco IOS 12.1XK
- Cisco IOS 12.1XL
- Cisco IOS 12.1XM
- Cisco IOS 12.1XP
- Cisco IOS 12.1XQ
- Cisco IOS 12.1XR
- Cisco IOS 12.1XS
- Cisco IOS 12.1XT
- Cisco IOS 12.1XU
- Cisco IOS 12.1XV
- Cisco IOS 12.1XW
- Cisco IOS 12.1XX
- Cisco IOS 12.1XY
- Cisco IOS 12.1XZ
- Cisco IOS 12.1YA
- Cisco IOS 12.1YB
- Cisco IOS 12.1YC
- Cisco IOS 12.1YD
Question to Ask Vendors:
- Can you confirm whether your systems are affected by CVE-2004-1775, and if so, what steps are you currently taking to mitigate this vulnerability?
- What is your estimated timeline for fully resolving CVE-2004-1775 in your products or services, and how will you communicate updates on this issue to us as your customer?
Recommended Actions:
- Check out the advisory links provided below.