CipherTrust INC Information for VU#107186
Multiple vulnerabilities in SNMPv1 trap handling
This is in reference to your notification regarding VU#107186 and VU#854306.
CipherTrust has confirmed that IronMail is not vulnerable to these issues.
IronMail allows alert notification via SNMP traps. This allows the IronMail
to be integrated into SNMP managed services without being open to
vulnerabilities such as these. Specifically, due to the way that IronMail
uses SNMP, it does not receive requests or traps.
The vendor has not provided us with any further information regarding this vulnerability.
The CERT/CC has no additional comments at this time.
If you have feedback, comments, or additional information about this vulnerability, please send us email.