EIP-2026-103862

PRE-CVE

Ascom COLTSOHO / Brocade Fabric OS / MatchBox / Win98/NT4 / Solaris / Xyplex - SNMP World Writeable Community

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-103862. PoCs published by Michal Zalewski.

AI-analyzed exploit summary This document describes a vulnerability in multiple network devices/OSes where default SNMP communities are world-writeable, allowing unauthorized configuration changes. It lists common default communities and provides an example `snmpset` command to disable an interface.

Description

Ascom COLTSOHO / Brocade Fabric OS / MatchBox / Win98/NT4 / Solaris / Xyplex - SNMP World Writeable Community

Exploits (1)

exploitdb WRITEUP VERIFIED

by Michal Zalewski · textremotemultiple

https://www.exploit-db.com/exploits/19751

View Code ZIP pw:eip

This document describes a vulnerability in multiple network devices/OSes where default SNMP communities are world-writeable, allowing unauthorized configuration changes. It lists common default communities and provides an example `snmpset` command to disable an interface.

Classification

Writeup 90%

Attack Type

Auth Bypass

Complexity

Trivial

Reliability

Reliable

Target: Multiple (Ascom COLTSOHO 2.0.21, Brocade Fabric OS 2.1.2, Cisco IOS 11.2, etc.)

No auth needed

Prerequisites: Knowledge of default SNMP community strings · Network access to the target device

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026