To assist in detecting and mitigating the IOS vulnerability released
today publicly by Cisco, Foundstone has released a free scanning tool to
aid in identifying vulnerable Cisco devices. Devices detected by SNScan
will have their IOS and feature-set information displayed in a easy to
manage layout. Device information should be matched against Cisco's IOS
upgrade matrix and patched according to the upgrade path recommended by
SNMP Detection Utility
Copyright 2003(c) by Foundstone, Inc.
SNScan is a Windows based SNMP detection utility that can quickly and
accurately identify SNMP enabled devices on a network. This utility can
effectively indicate devices that are potentially vulnerable to SNMP
related security threats, such as those released on February 12, 2002
and the Cisco IPv4 Remote Denial of Service vulnerability from July 17,
SNScan allows for the scanning of SNMP specific ports (e.g. UDP 161,
193, 391 and 1993) and the use of standard (i.e. "public") as well as
user-defined SNMP community names. User-defined community names may be
used to more effectively evaluate the presence of SNMP enabled devices
in more complex networks.
SNScan is intended for use by system and network administrators as a
fast and reliable utility for information gathering. While not
indicating whether SNMP enabled devices are vulnerable to specific
threats, SNScan can quickly and accurately identify potential areas of
exposure to SNMP related vulnerabilities.