VULHUB ™

It has been reported that Avaya Argent Office implements the use of a weak SNMP authentication mechansim. Allegedly, the Avaya software accepts NULL SNMP community passwords, as well leaks information when handling partial community names that may be used to obtian full community names. This could result in an attacker gaining unauthorized SNMP access and could also aid in carrying out brute force and possibly other attacks.

It has been reported that Avaya Argent Office implements the use of a weak SNMP authentication mechansim. Allegedly, the Avaya software accepts NULL SNMP community passwords, as well leaks information when handling partial community names that may be used to obtian full community names. This could result in an attacker gaining unauthorized SNMP access and could also aid in carrying out brute force and possibly other attacks.