CRIME FW: Security Alert! Free SNMP tool from Foundstone.

From: George Heuston (GeorgeH@private)
Date: Thu Feb 14 2002 - 16:50:40 PST

Next message: George Heuston: "CRIME FW: NIPC Daily Report 15 February 02"

Previous message: George Heuston: "CRIME FW: NIPC Daily Report 14 Feb 2002"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

-----Original Message-----
From: Foundstone News [mailto:list@private] 
Sent: Thursday, February 14, 2002 1:45 PM
To: George Heuston
Subject: Security Alert! Free SNMP tool from Foundstone.

New Foundstone Freeware Tool Offered to Combat Latest SNMP Vulnerabilities 

SNScan Accurately Detects Devices Using SNMP 
Available at Foundstone.com 

On February 12, 2002, CERT issued a warning regarding a vulnerability in the
Simple Network Management Protocol (SNMP) that could allow an outsider to
gain control of their systems. More than 200 popular products are built on
the protocol.

On February 13, 2002 the R&D Labs at Foundstone, Inc., the premier provider
of security assessments and vulnerability protection, announced SNScan, a
freeware tool developed entirely by Foundstone, to quickly and accurately
detect SNMP- (Simple Network Management Protocol) enabled devices on a
network. SNScan can effectively determine the level of exposure to SNMP-
related vulnerabilities across any network. Once these devices have been
identified, an administrator can determine whether to fix the SNMP service,
disable SNMP or implement filters to restrict access. Recent SNMP
vulnerabilities range from allowing host administrative access to Denial of
Service (DoS) attacks.

"SNMP is the main protocol used to manage network devices at large
corporations. There are potentially millions of systems on the Internet and
within companies that are vulnerable," said Stuart McClure, CTO of
Foundstone. "SNScan is based on our flagship technology, FoundScan, known in
the industry to give the most accurate information possible. Considering the
number of devices vulnerable, accuracy is going to be the most important
feature in combating this vulnerability."

SNScan is available as a freeware tool for download from the Foundstone
corporate Web site, at <http://www.foundstone.com/>. To get to SNScan, click
Vulnerability Alert on the right and select Scanners in the Free Tools
section. 

For more information regarding Foundstone's FoundScan Vulnerability
Management solution, visit <http://www.foundstone.com/services/mvas.html>. 
Or contact Rob Stevens at 1-877-91-FOUND

If you wish to be excluded from future Foundstone announcements, please
reply to this e-mail with only the single word UNSUBSCRIBE in the subject
line.

Next message: George Heuston: "CRIME FW: NIPC Daily Report 15 February 02"
Previous message: George Heuston: "CRIME FW: NIPC Daily Report 14 Feb 2002"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Sun May 26 2002 - 11:38:59 PDT