American Power Conversion Corporation Information for VU#854306

Multiple vulnerabilities in SNMPv1 request handling

Status

Affected

Vendor Statement

      American Power Conversion has conducted extensive testing in order to
      determine the impact any vulnerabilities within SNMP pose to our customers.
      We have determined that exploiting these vulnerabilities in some versions
      of our firmware can interfere with the normal operation of APC's
      SNMP-enabled products.

      Upgrades are available that repair these vulnerabilities.

      For details, refer to the APC Knowlege Base document titled " American Power
      Conversion Security Bulletin
      " available at www.apc.com.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Vendor References

None

Addendum

The CERT/CC has no additional comments at this time.

If you have feedback, comments, or additional information about this vulnerability, please send us email.