Menu
Reply
SnJ
  • 2
  • 0
  • 0
Joining in
522 Views
Message 1 of 7
Flag for a moderator

SNMP VULNERABILITY

 

I have had numerous letters from Virgin media and emails telling me I have a device with snmp vulnerability. I followed instructions to close ports on the hub 3 however there is no way of deleting, can anyone help please as calling them is impossible.

Cheers

Screen Shot 2020-12-10 at 13.01.18.png

Tags (1)
0 Kudos
Reply
用心棒
  • 5.96K
  • 670
  • 2.06K
Very Insightful Person
Very Insightful Person
490 Views
Message 2 of 7
Flag for a moderator

Re: SNMP VULNERABILITY

I do not think automatically created uPNP entries can be deleted.

Is the device at 192.168.0.72 full patched / updated and:

  • do its services need to be exposed to the internet
  • can the SNMP exposure be restricted from the device

Alternatively consider creating a port forward rule for 161/udp to an unassigned IP Address on the Hub thereby discarding such network traffic.

I'm a Very Insightful Person, I'm here to share knowledge, I don't work for Virgin Media. Learn more
Have I helped? Click Mark as Helpful Answer or use Kudos to say thanks

0 Kudos
Reply
SnJ
  • 2
  • 0
  • 0
Joining in
442 Views
Message 3 of 7
Flag for a moderator

Re: SNMP VULNERABILITY

Apologies but I have no idea what you mean.

Is the device at 192.168.0.72 full patched / updated and:

  • do its services need to be exposed to the internet
  • can the SNMP exposure be restricted from the device

I can't get my head around this whole issue.

Virgin email & write stating there is an issue but their solution doesn't work.
How on earth am I supposed to sort this problem out??

Steve

 

0 Kudos
Reply
Anonymous
Not applicable
440 Views
Message 4 of 7
Flag for a moderator

Re: SNMP VULNERABILITY

what is the device on 192.168.0.72
0 Kudos
Reply
用心棒
  • 5.96K
  • 670
  • 2.06K
Very Insightful Person
Very Insightful Person
435 Views
Message 5 of 7
Flag for a moderator

Re: SNMP VULNERABILITY

The device at 192.168.0.72 is accepting connections over port 80 so browsing to http://192.168.0.72 may help with its identification.

0 Kudos
Reply
MrHalfAsleep
  • 2.5K
  • 71
  • 979
Problem sorter
425 Views
Message 6 of 7
Flag for a moderator

Re: SNMP VULNERABILITY

This a common thing and is found on (in my sister's case) her Ricoh SP201n printer.  SNMP had to be disabled as it caused problems.







--
The only winning move is not to play.
No system is 100% secure
Ridicule is nothing to be scared of - Adam Ant
The only thing constant - is change. Chris Evans
The internet is a series of tubes
Windows Update isn't rocket science - if it were, it would work.
Unlike Monty Python, spam is never off.
Some video posts may contain swearing/inappropriate content for young children

π
0 Kudos
Reply
DJ_Shadow1966
  • 7.14K
  • 1.36K
  • 2.02K
Very Insightful Person
Very Insightful Person
400 Views
Message 7 of 7
Flag for a moderator

Re: SNMP VULNERABILITY

Hello

Is the device listed some sort of camera as normally port 554 is used for the RTSP or Real Time Streaming Protocol ?

If iit is then there may be a way of turning of the SNMP protocol if there isn't then you will need to speak to the manufacture of the camera.

Regards Mike

 

I'm a Very Insightful Person, I'm here to share knowledge, I don't work for Virgin Media. Learn more

Have I helped? Click Mark as Helpful Answer or use Kudos to say thanks

0 Kudos
Reply