CipherTrust INC Information for VU#107186

Multiple vulnerabilities in SNMPv1 trap handling

Status

Not Affected

Vendor Statement

      This is in reference to your notification regarding VU#107186 and VU#854306.
      CipherTrust has confirmed that IronMail is not vulnerable to these issues.
      IronMail allows alert notification via SNMP traps. This allows the IronMail
      to be integrated into SNMP managed services without being open to
      vulnerabilities such as these. Specifically, due to the way that IronMail
      uses SNMP, it does not receive requests or traps.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Vendor References

None

Addendum

The CERT/CC has no additional comments at this time.

If you have feedback, comments, or additional information about this vulnerability, please send us email.