SNMP 'GETBULK' Reflection DDoS Description The remote SNMP daemon is responding with a large amount of data to a 'GETBULK' request with a larger than normal value for 'max-repetitions'. A remote attacker can use this SNMP server to conduct a reflected distributed denial of service attack on an arbitrary remote host. Solution Disable the SNMP service on the remote host if you do not use it. Otherwise, restrict and monitor access to this service, and consider changing the default 'public' community string. See Also http://www.nessus.org/u?8b551b5chttp://www.nessus.org/u?bdb53cfc Output Nessus was able to determine the SNMP service can be abused in an SNMP Reflection DDoS attack : Request size (bytes) : 42 Response size (bytes) : 2455
Parweez
37 Posts
0
November 1st, 2018 13:00
How do I remediate these issues on the CMC?
Parweez
37 Posts
0
November 2nd, 2018 08:00