Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
gentooGentoo FoundationGLSA-201507-17
HistoryJul 10, 2015 - 12:00 a.m.

SNMP: Denial of service

2015-07-1000:00:00
Gentoo Foundation
security.gentoo.org
10

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.075 Low

EPSS

Percentile

94.1%

JSON

Background

SNMP is a widely used protocol for monitoring the health and welfare of network equipment.

Description

A specially crafted trap message triggers a conversion to an erroneous variable type when the -OQ option is used.

Impact

A remote attacker could possibly cause a Denial of Service condition.

Workaround

There is no known workaround at this time.

Resolution

All SNMP users should upgrade to the latest version:

 # emerge --sync
 # emerge --ask --oneshot --verbose
 ">=net-analyzer/net-snmp-5.7.3_pre5-r1"
OSVersionArchitecturePackageVersionFilename
Gentooanyallnet-analyzer/net-snmp< 5.7.3_pre5-r1UNKNOWN

Related

ibm 12
nessus 23
securityvulns 6
freebsd 1
debiancve 1
openvas 11
veracode 1
f5 2
centos 2
fedora 3
oraclelinux 2
redhat 2
mageia 1
prion 1
ubuntucve 1
cve 1
cloudfoundry 1
ubuntu 1
ibm
ibm
Security Bulletin: Vulnerabilities in net-snmp affect Power Hardware Management Console (CVE-2014-3565)
2021-09-23 01:31:39
Security Bulletin: A vulnerability in net-snmp affects IBM Security Network Intrusion Prevention System (CVE-2014-3565)
2022-02-23 19:48:26
Security Bulletin: Vulnerability in Net-SNMP affects PowerKVM (CVE-2014-3565)
2018-06-18 01:30:37
nessus
nessus
CentOS 6 : net-snmp (CESA-2015:1385)
2015-07-28 00:00:00
Oracle Linux 6 : net-snmp (ELSA-2015-1385)
2015-07-30 00:00:00
GLSA-201507-17 : SNMP: Denial of Service
2015-09-23 00:00:00
securityvulns
securityvulns
[ MDVSA-2014:184 ] net-snmp
2014-09-29 00:00:00
[USN-2711-1] Net-SNMP vulnerabilities
2015-08-24 00:00:00
snmplib / snmpd DoS
2015-04-20 00:00:00
freebsd
freebsd
net-snmp -- snmptrapd crash
2014-07-31 00:00:00
debiancve
debiancve
CVE-2014-3565
2014-10-07 14:55:00
openvas
openvas
Fedora Update for net-snmp FEDORA-2014-10099
2014-09-11 00:00:00
Oracle: Security Advisory (ELSA-2015-1385)
2015-10-06 00:00:00
SUSE: Security Advisory (SUSE-SU-2014:1106-1)
2021-06-09 00:00:00
veracode
veracode
Denial Of Service (DoS)
2019-01-15 09:06:52
f5
f5
K17315 : SNMP vulnerability CVE-2014-3565
2015-09-29 00:00:00
SOL17315 - SNMP vulnerability CVE-2014-3565
2015-09-28 00:00:00
centos
centos
net security update
2015-07-26 14:12:35
net security update
2015-11-30 19:45:16
fedora
fedora
[SECURITY] Fedora 19 Update: net-snmp-5.7.2-15.fc19
2014-09-10 13:27:10
[SECURITY] Fedora 20 Update: net-snmp-5.7.2-18.fc20
2014-09-09 22:10:31
[SECURITY] Fedora 21 Update: net-snmp-5.7.2-23.fc21
2014-09-23 05:00:09
oraclelinux
oraclelinux
net-snmp security and bug fix update
2015-11-23 00:00:00
net-snmp security and bug fix update
2015-07-28 00:00:00
redhat
redhat
(RHSA-2015:1385) Moderate: net-snmp security and bug fix update
2015-07-22 00:00:00
(RHSA-2015:2345) Moderate: net-snmp security and bug fix update
2015-11-19 13:36:48
mageia
mageia
Updated net-snmp packages fix CVE-2014-3565
2014-09-05 13:07:37
prion
prion
Design/Logic Flaw
2014-10-07 14:55:00
ubuntucve
ubuntucve
CVE-2014-3565
2014-10-07 00:00:00
cve
cve
CVE-2014-3565
2014-10-07 14:55:00
cloudfoundry
cloudfoundry
USN-2711-1 Net-SNMP Vulnerabilities | Cloud Foundry
2015-10-07 00:00:00
ubuntu
ubuntu
Net-SNMP vulnerabilities
2015-08-17 00:00:00

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.075 Low

EPSS

Percentile

94.1%

JSON
Related for GLSA-201507-17
ibm12nessus23securityvulns6freebsd1debiancve1openvas11veracode1f52centos2fedora3oraclelinux2redhat2mageia1prion1ubuntucve1cve1cloudfoundry1ubuntu1