CVE-2012-3268 HPE A5120-48G-PoE+ EI Switch Remote Disclosure of Information Vulnerability

Potential security vulnerabilities have been identified with HP A5120-48G-PoE+ EI Switch switches.
A remote user with knowledge of the SNMP public community string can access potentially sensitive data (e.g., user names, passwords) in the h3c-user.mib and hh3c-user.mib MIBs via SNMP and then use that data to take control of the target device.

The vulnerabilities could be remotely exploited resulting in disclosure of information.

Please refer to c03515685 for more information about patching these vulnerabilities.

Patch:
Following are links for downloading patches to fix the vulnerabilities:

c03515685