Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2013-2021 Tenable Network Security, Inc.SUSE_11_LIBSNMP15-120709.NASL
HistoryJan 25, 2013 - 12:00 a.m.

SuSE 11.1 Security Update : net-snmp (SAT Patch Number 6517)

2013-01-2500:00:00
This script is Copyright (C) 2013-2021 Tenable Network Security, Inc.
www.tenable.com
9

3.5 Low

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:S/C:N/I:N/A:P

0.012 Low

EPSS

Percentile

85.0%

JSON

This update to net-snmp resolves the following issues :

  • Specially crafted SNMP GET requests could cause a denial of service (application crash) via a heap-based out-out-bounds read flaw which could be exploited remotely. (CVE-2012-2141)

  • The snmpd agent should read shared memory information from /proc/meminfo when running on Linux Kernel 2.6 or newer. (bnc#762887)

  • The snmpd agent could crash when an AgentX sub-agent disconnects in the middle of a request. (bnc#670789)

  • After rotating the net-snmp log file, use ‘try-restart’ to restart the daemon. Reloading with a SIGHUP signal may trigger crashes when dynamic modules (dlmod) are in use. (bnc#762433)

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were  
# extracted from SuSE 11 update information. The text itself is
# copyright (C) Novell, Inc.
#

if (NASL_LEVEL < 3000) exit(0);

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(64194);
  script_version("1.4");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/19");

  script_cve_id("CVE-2012-2141");

  script_name(english:"SuSE 11.1 Security Update : net-snmp (SAT Patch Number 6517)");
  script_summary(english:"Checks rpm output for the updated packages");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote SuSE 11 host is missing one or more security updates."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"This update to net-snmp resolves the following issues :

  - Specially crafted SNMP GET requests could cause a denial
    of service (application crash) via a heap-based
    out-out-bounds read flaw which could be exploited
    remotely. (CVE-2012-2141)

  - The snmpd agent should read shared memory information
    from /proc/meminfo when running on Linux Kernel 2.6 or
    newer. (bnc#762887)

  - The snmpd agent could crash when an AgentX sub-agent
    disconnects in the middle of a request. (bnc#670789)

  - After rotating the net-snmp log file, use 'try-restart'
    to restart the daemon. Reloading with a SIGHUP signal
    may trigger crashes when dynamic modules (dlmod) are in
    use. (bnc#762433)"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.novell.com/show_bug.cgi?id=670789"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.novell.com/show_bug.cgi?id=759352"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.novell.com/show_bug.cgi?id=762433"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.novell.com/show_bug.cgi?id=762887"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2012-2141.html"
  );
  script_set_attribute(attribute:"solution", value:"Apply SAT patch number 6517.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:S/C:N/I:N/A:P");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:libsnmp15");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:libsnmp15-32bit");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:net-snmp");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:perl-SNMP");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:snmp-mibs");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:suse_linux:11");

  script_set_attribute(attribute:"patch_publication_date", value:"2012/07/09");
  script_set_attribute(attribute:"plugin_publication_date", value:"2013/01/25");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2013-2021 Tenable Network Security, Inc.");
  script_family(english:"SuSE Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/SuSE/release", "Host/SuSE/rpm-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/SuSE/release");
if (isnull(release) || release !~ "^(SLED|SLES)11") audit(AUDIT_OS_NOT, "SuSE 11");
if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if (cpu !~ "^i[3-6]86$" && "x86_64" >!< cpu && "s390x" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "SuSE 11", cpu);

pl = get_kb_item("Host/SuSE/patchlevel");
if (isnull(pl) || int(pl) != 1) audit(AUDIT_OS_NOT, "SuSE 11.1");


flag = 0;
if (rpm_check(release:"SLED11", sp:1, cpu:"i586", reference:"libsnmp15-5.4.2.1-8.12.10.1")) flag++;
if (rpm_check(release:"SLED11", sp:1, cpu:"i586", reference:"net-snmp-5.4.2.1-8.12.10.1")) flag++;
if (rpm_check(release:"SLED11", sp:1, cpu:"i586", reference:"perl-SNMP-5.4.2.1-8.12.10.1")) flag++;
if (rpm_check(release:"SLED11", sp:1, cpu:"i586", reference:"snmp-mibs-5.4.2.1-8.12.10.1")) flag++;
if (rpm_check(release:"SLED11", sp:1, cpu:"x86_64", reference:"libsnmp15-5.4.2.1-8.12.10.1")) flag++;
if (rpm_check(release:"SLED11", sp:1, cpu:"x86_64", reference:"libsnmp15-32bit-5.4.2.1-8.12.10.1")) flag++;
if (rpm_check(release:"SLED11", sp:1, cpu:"x86_64", reference:"net-snmp-5.4.2.1-8.12.10.1")) flag++;
if (rpm_check(release:"SLED11", sp:1, cpu:"x86_64", reference:"perl-SNMP-5.4.2.1-8.12.10.1")) flag++;
if (rpm_check(release:"SLED11", sp:1, cpu:"x86_64", reference:"snmp-mibs-5.4.2.1-8.12.10.1")) flag++;
if (rpm_check(release:"SLES11", sp:1, reference:"libsnmp15-5.4.2.1-8.12.10.1")) flag++;
if (rpm_check(release:"SLES11", sp:1, reference:"net-snmp-5.4.2.1-8.12.10.1")) flag++;
if (rpm_check(release:"SLES11", sp:1, reference:"perl-SNMP-5.4.2.1-8.12.10.1")) flag++;
if (rpm_check(release:"SLES11", sp:1, reference:"snmp-mibs-5.4.2.1-8.12.10.1")) flag++;
if (rpm_check(release:"SLES11", sp:1, cpu:"s390x", reference:"libsnmp15-32bit-5.4.2.1-8.12.10.1")) flag++;
if (rpm_check(release:"SLES11", sp:1, cpu:"x86_64", reference:"libsnmp15-32bit-5.4.2.1-8.12.10.1")) flag++;


if (flag)
{
  if (report_verbosity > 0) security_note(port:0, extra:rpm_report_get());
  else security_note(0);
  exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");
VendorProductVersionCPE
novellsuse_linux11p-cpe:/a:novell:suse_linux:11:libsnmp15
novellsuse_linux11p-cpe:/a:novell:suse_linux:11:libsnmp15-32bit
novellsuse_linux11p-cpe:/a:novell:suse_linux:11:net-snmp
novellsuse_linux11p-cpe:/a:novell:suse_linux:11:perl-snmp
novellsuse_linux11p-cpe:/a:novell:suse_linux:11:snmp-mibs
novellsuse_linux11cpe:/o:novell:suse_linux:11

Related

nessus 21
openvas 24
fedora 2
f5 2
redhat 2
debiancve 1
freebsd 1
amazon 1
prion 1
ubuntu 1
centos 2
cve 1
securityvulns 2
oraclelinux 2
nvd 1
ubuntucve 1
veracode 1
cvelist 1
gentoo 1
nessus
nessus
Fedora 17 : net-snmp-5.7.1-5.fc17 (2012-16662)
2012-10-31 00:00:00
Oracle Linux 5 : net-snmp (ELSA-2013-0124)
2013-07-12 00:00:00
Mandriva Linux Security Advisory : net-snmp (MDVSA-2013:049)
2013-04-20 00:00:00
openvas
openvas
Fedora Update for net-snmp FEDORA-2012-16662
2012-11-02 00:00:00
RedHat Update for net-snmp RHSA-2013:0124-01
2013-01-11 00:00:00
CentOS Update for net-snmp CESA-2012:0876 centos6
2012-07-30 00:00:00
fedora
fedora
[SECURITY] Fedora 17 Update: net-snmp-5.7.1-5.fc17
2012-10-31 02:56:52
[SECURITY] Fedora 16 Update: net-snmp-5.7.1-3.fc16
2012-10-31 02:54:58
f5
f5
K15883 : Net-SNMP vulnerability CVE-2012-2141
2015-01-30 00:00:00
SOL15883 - Net-SNMP vulnerability CVE-2012-2141
2014-11-27 00:00:00
redhat
redhat
(RHSA-2012:0876) Moderate: net-snmp security and bug fix update
2012-06-20 00:00:00
(RHSA-2013:0124) Moderate: net-snmp security and bug fix update
2013-01-08 00:00:00
debiancve
debiancve
CVE-2012-2141
2012-08-14 22:55:01
freebsd
freebsd
net-snmp -- Remote DoS
2012-04-26 00:00:00
amazon
amazon
Medium: net-snmp
2012-07-05 16:15:00
prion
prion
Out-of-bounds
2012-08-14 22:55:00
ubuntu
ubuntu
Net-SNMP vulnerability
2012-05-23 00:00:00
centos
centos
net security update
2013-01-09 19:44:42
net security update
2012-07-10 17:24:36
cve
cve
CVE-2012-2141
2012-08-14 22:55:01
securityvulns
securityvulns
snmpd DoS
2012-06-25 00:00:00
[ MDVSA-2012:099 ] net-snmp
2012-06-25 00:00:00
oraclelinux
oraclelinux
net-snmp security and bug fix update
2013-01-11 00:00:00
net-snmp security and bug fix update
2012-06-27 00:00:00
nvd
nvd
CVE-2012-2141
2012-08-14 22:55:01
ubuntucve
ubuntucve
CVE-2012-2141
2012-04-27 00:00:00
veracode
veracode
Denial Of Service (DoS)
2019-01-15 08:52:37
cvelist
cvelist
CVE-2012-2141
2012-08-14 22:00:00
gentoo
gentoo
Net-SNMP: Denial of service
2014-09-01 00:00:00

3.5 Low

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:S/C:N/I:N/A:P

0.012 Low

EPSS

Percentile

85.0%

JSON
Related for SUSE_11_LIBSNMP15-120709.NASL
nessus21openvas24fedora2f52redhat2debiancve1freebsd1amazon1prion1ubuntu1centos2cve1securityvulns2oraclelinux2nvd1ubuntucve1veracode1cvelist1gentoo1