Extreme Networks Information for VU#878044
SNMPv3 improper HMAC validation allows authentication bypass
- Vendor Information Help Date Notified: 20 May 2008
- Statement Date: 20 Apr 2009
- Date Updated: 22 Apr 2009
Extreme Networks products running "Extremeware" software are not vulnerable.
Extreme Networks products running "EXOS" software are vulnerable.
This vulnerability is fixed in EXOS patch release 126.96.36.199-patch1-7 and will be integrated into the subsequent sustaining releases.
The vendor has not provided us with any further information regarding this vulnerability.
There are no additional comments at this time.