Global Technology Associates Information for VU#878044

SNMPv3 improper HMAC validation allows authentication bypass



Vendor Statement

Global Technology Associates products running GB-OS 5.1.4 and later are not vulnerable.  GTA products running earlier versions of GB-OS are vulnerable if the SNMP service is utilized and enable.

    Customers running systems with GB-OS prior to version 5.1.4 are encouraged to update their GTA product to GB-OS 5.1.4 or 5.2.x. In the event that it is not possible to update your GTA product, customers should disable the SNMP service on their system to prevent the exploit of this vulnerability.

    Vendor Information

    The vendor has not provided us with any further information regarding this vulnerability.

    Vendor References



    There are no additional comments at this time.

    If you have feedback, comments, or additional information about this vulnerability, please send us email.