Intrusion Prevention

SNMP.XSS.Attempt

Description

This threat sends a SNMP XSS attempt. It specifies the community string as Javascript code, causing a web event log to execute that code in the context of the user browsing the administrative site. This can be used to hide log details, perform actions in the adminstration site, and attempt to exploit the browser with malware.

Affected Products

Any system with SNMP enabled.

Impact

System compromise.

Recommended Actions

N/A