Scribd
Upload
107 views

Audit Report Nipper Studio Nipper Studio Audit Report 2 March 2017 Summary

Nipper Studio conducted a network audit on March 2, 2017 that included a security audit, software vulnerability audit, and configuration report on a 3COM 5500-EI switch. The security audit identified 21 issues, with one rated as critical and one as high priority. The vulnerability audit found no issues for the switch. The report provides details of the findings and recommendations.

Uploaded by

shadab umair
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
107 views

Audit Report Nipper Studio Nipper Studio Audit Report 2 March 2017 Summary

Nipper Studio conducted a network audit on March 2, 2017 that included a security audit, software vulnerability audit, and configuration report on a 3COM 5500-EI switch. The security audit identified 21 issues, with one rated as critical and one as high priority. The vulnerability audit found no issues for the switch. The report provides details of the findings and recommendations.

Uploaded by

shadab umair
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 2

Nipper

Studio
Audit Report
2 March 2017

Summary

Nipper Studio performed an audit on 2 March 2017 of the network device detailed in
the scope. The audit consisted of the following components:

a best practice security audit (Part 2);


a software vulnerability audit report (Part 3);
a configuration report (Part 4).

Scope

The scope of this audit was limited to the device detailed in Table 1.


Device Name OS

3COM 5500 Series Switch 5500-EI SS4

Table 1: Audit device scope

Security Audit Summary

Nipper Studio performed a security audit of the one device detailed in the scope and
identified 21 security-related issues. Although significant issues were identified that
Nipper Studio recommends should be reviewed as soon as is practical, most of the
security issues were rated as low or informational. Each of the issues identified is
described in greater detail in the main body of this report.

Nipper Studio identified a number of clear-text protocol related issues. It is


important that all clear-text protocol services should be replaced with
cryptographically secure alternatives in order to help prevent unauthorized
eavesdropping of potentially sensitive data. Furthermore the clear-text services are
often used for administration purposes and a malicious user, or attacker, who is able
to monitor the communications may also gain access to authentication credentials
that could then lead them to gain administrative access to the system.
Nipper Studio can draw the following statistics from the results of this security
assessment, (percentages have been rounded). 1 issue (5%) was rated as critical, 1
issue (5%) was rated as high, 7 issues (33%) were rated as medium, 6 issues
(29%) were rated as low and 6 issues (29%) were rated as informational.

Vulnerability Audit Summary

Nipper Studio performed a vulnerability audit of the zero device detailed in the
scope.


Device Name Critical High Medium Low

3COM 5500 Series Switch 5500-EI 0 0 0 0

Table 2: Summary of findings from the Vulnerability Audit for each device

You might also like