Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
centosCentOS ProjectCESA-2008:0528-01
HistoryJun 10, 2008 - 11:24 p.m.

ucd security update

2008-06-1023:24:29
CentOS Project
lists.centos.org
63

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.971 High

EPSS

Percentile

99.8%

JSON

CentOS Errata and Security Advisory CESA-2008:0528-01

The Simple Network Management Protocol (SNMP) is a protocol used for
network management.

A flaw was found in the way ucd-snmp checked an SNMPv3 packet’s Keyed-Hash
Message Authentication Code (HMAC). An attacker could use this flaw to
spoof an authenticated SNMPv3 packet. (CVE-2008-0960)

All users of ucd-snmp should upgrade to these updated packages, which
contain a backported patch to resolve this issue.

Merged security bulletin from advisories:
https://lists.centos.org/pipermail/centos-announce/2008-June/077134.html

Affected packages:
ucd-snmp
ucd-snmp-devel
ucd-snmp-utils

Related

checkpoint_advisories 1
openvas 42
nessus 35
securityvulns 4
f5 4
ubuntucve 1
seebug 2
cisco 1
checkpoint_security 1
redhat 2
exploitpack 1
debiancve 1
veracode 1
cve 1
d2 1
prion 1
exploitdb 1
cert 1
oraclelinux 1
fedora 5
centos 1
slackware 1
gentoo 1
osv 1
ubuntu 1
debian 1
vmware 4
suse 1
checkpoint_advisories
checkpoint_advisories
Multiple Vendor SNMPv3 HMAC Handling Authentication Bypass (CVE-2008-0960)
2008-06-22 00:00:00
openvas
openvas
RedHat Update for ucd-snmp RHSA-2008:0528-01
2009-03-06 00:00:00
CentOS Update for ucd-snmp CESA-2008:0528-01 centos2 i386
2009-02-27 00:00:00
RedHat Update for ucd-snmp RHSA-2008:0528-01
2009-03-06 00:00:00
nessus
nessus
SNMP Version 3 Authentication Bypass Vulnerabilities (cisco-sa-20080610-snmpv3)
2013-05-31 00:00:00
SNMP Version 3 Authentication Vulnerabilities (cisco-sa-20080610-snmpv3)
2013-12-14 00:00:00
RHEL 2.1 : ucd-snmp (RHSA-2008:0528)
2008-06-12 00:00:00
securityvulns
securityvulns
Cisco Security Advisory: SNMP Version 3 Authentication Vulnerabilities
2008-06-10 00:00:00
[oCERT-2008-006] multiple SNMP implementations HMAC authentication spoofing
2008-06-10 00:00:00
Multiple SNMPv3 authentication implementations bypass
2008-06-10 00:00:00
f5
f5
K9025 : FirePass SNMP DoS vulnerability
2013-03-18 00:00:00
K8939 : SNMPv3 HMAC verification vulnerability CVE-2008-0960 - VU#878044
2013-03-19 00:00:00
SOL8939 - SNMPv3 HMAC verification vulnerability CVE-2008-0960 - VU#878044
2008-07-15 00:00:00
ubuntucve
ubuntucve
CVE-2008-0960
2008-06-10 00:00:00
seebug
seebug
SNMPv3 HMAC validation error Remote Authentication Bypass Exploit
2008-06-12 00:00:00
Net-SNMP远程绕过认证漏洞
2008-06-14 00:00:00
cisco
cisco
SNMP Version 3 Authentication Vulnerabilities
2008-06-10 00:00:00
checkpoint_security
checkpoint_security
Check Point response to NET-SNMP vulnerability CVE-2008-0960
2008-06-04 21:00:00
redhat
redhat
(RHSA-2008:0528) Moderate: ucd-snmp security update
2008-06-10 00:00:00
(RHSA-2008:0529) Moderate: net-snmp security update
2008-06-10 00:00:00
exploitpack
exploitpack
SNMPv3 - HMAC Validation error Remote Authentication Bypass
2008-06-12 00:00:00
debiancve
debiancve
CVE-2008-0960
2008-06-10 18:32:00
veracode
veracode
Authentication Bypass
2020-04-10 00:31:19
cve
cve
CVE-2008-0960
2008-06-10 18:32:00
d2
d2
DSquare Exploit Pack: D2SEC_SNMPV3
2008-06-10 18:32:00
prion
prion
Authentication flaw
2008-06-10 18:32:00
exploitdb
exploitdb
SNMPv3 - HMAC Validation error Remote Authentication Bypass
2008-06-12 00:00:00
cert
cert
SNMPv3 improper HMAC validation allows authentication bypass
2008-06-10 00:00:00
oraclelinux
oraclelinux
net-snmp security update
2008-06-10 00:00:00
fedora
fedora
[SECURITY] Fedora 8 Update: net-snmp-5.4.1-7.fc8
2008-06-11 04:39:34
[SECURITY] Fedora 9 Update: net-snmp-5.4.1-18.fc9
2008-06-11 04:39:24
[SECURITY] Fedora 8 Update: net-snmp-5.4.1-8.fc8
2008-11-06 04:05:02
centos
centos
net security update
2008-06-10 20:39:52
slackware
slackware
[slackware-security] net-snmp
2008-07-29 05:33:31
gentoo
gentoo
Net-SNMP: Multiple vulnerabilities
2008-08-06 00:00:00
osv
osv
net-snmp - several vulnerabilities
2008-11-09 00:00:00
ubuntu
ubuntu
Net-SNMP vulnerabilities
2008-12-03 00:00:00
debian
debian
[SECURITY] [DSA 1663-1] New net-snmp packages fix several vulnerabilities
2008-11-09 09:49:16
vmware
vmware
Updated ESX packages for libxml2, ucd-snmp, libtiff
2008-10-31 00:00:00
Updated ESX packages for libxml2, ucd-snmp, libtiff
2008-10-31 00:00:00
Updated ESX packages for OpenSSL, net-snmp, perl
2008-08-12 00:00:00
suse
suse
authentication bypass, denial-of-service in net-snmp
2008-08-01 13:33:56

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.971 High

EPSS

Percentile

99.8%

JSON
Related for CESA-2008:0528-01
checkpoint_advisories1openvas42nessus35securityvulns4f54ubuntucve1seebug2cisco1checkpoint_security1redhat2exploitpack1debiancve1veracode1cve1d21prion1exploitdb1cert1oraclelinux1fedora5centos1slackware1gentoo1osv1ubuntu1debian1vmware4suse1