Results 1 to 3 of 3

Thread: Cisco IOS vulnerability detection tool by Foundstone

  1. #1
    Senior Member
    Join Date
    May 2003
    Posts
    472

    Cisco IOS vulnerability detection tool by Foundstone

    i got a mail on BugTraq....thought i would be worth sharing....i know almost all the senior members would have suscribed to BugTraq..but even then we have cool newbies here..

    To assist in detecting and mitigating the IOS vulnerability released
    today publicly by Cisco, Foundstone has released a free scanning tool to
    aid in identifying vulnerable Cisco devices. Devices detected by SNScan
    will have their IOS and feature-set information displayed in a easy to
    manage layout. Device information should be matched against Cisco's IOS
    upgrade matrix and patched according to the upgrade path recommended by
    Cisco.

    SNScan v1.05
    http://www.foundstone.com/resources/proddesc/snscan.htm

    SNMP Detection Utility
    Copyright 2003(c) by Foundstone, Inc.
    http://www.foundstone.com

    SNScan is a Windows based SNMP detection utility that can quickly and
    accurately identify SNMP enabled devices on a network. This utility can
    effectively indicate devices that are potentially vulnerable to SNMP
    related security threats, such as those released on February 12, 2002
    and the Cisco IPv4 Remote Denial of Service vulnerability from July 17,
    2003.
    SNScan allows for the scanning of SNMP specific ports (e.g. UDP 161,
    193, 391 and 1993) and the use of standard (i.e. "public") as well as
    user-defined SNMP community names. User-defined community names may be
    used to more effectively evaluate the presence of SNMP enabled devices
    in more complex networks.

    SNScan is intended for use by system and network administrators as a
    fast and reliable utility for information gathering. While not
    indicating whether SNMP enabled devices are vulnerable to specific
    threats, SNScan can quickly and accurately identify potential areas of
    exposure to SNMP related vulnerabilities.
    guru@linux:~> who I grep -i blonde I talk; cd ~; wine; talk; touch; unzip; touch; strip; gasp; finger; mount; fsck; more; yes; gasp; umount; make clean; sleep;

  2. #2
    Nothing more than a port scanner
    Let\'s go to Paramount Great America !!!! LFC (LookingForChick)

  3. #3
    Junior Member
    Join Date
    Jul 2003
    Posts
    17
    thanks for the tool this should help on our net work as checking each router by hand is not feasseable
    \"If we knew what we were doing..............It wouldnt be called research.\" Albert Einstein

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •