Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusUbuntu Security Notice (C) 2018-2023 Canonical, Inc. / NASL script (C) 2018-2023 and is owned by Tenable, Inc. or an Affiliate thereof.UBUNTU_USN-3792-1.NASL
HistoryOct 16, 2018 - 12:00 a.m.

Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS : Net-SNMP vulnerability (USN-3792-1)

2018-10-1600:00:00
Ubuntu Security Notice (C) 2018-2023 Canonical, Inc. / NASL script (C) 2018-2023 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
31
JSON

It was discovered that Net-SNMP incorrectly handled certain certain crafted packets. A remote attacker could possibly use this issue to cause Net-SNMP to crash, resulting in a denial of service.

Note that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Ubuntu Security Notice USN-3792-1. The text 
# itself is copyright (C) Canonical, Inc. See 
# <http://www.ubuntu.com/usn/>. Ubuntu(R) is a registered 
# trademark of Canonical, Inc.
#

include('compat.inc');

if (description)
{
  script_id(118143);
  script_version("1.8");
  script_set_attribute(attribute:"plugin_modification_date", value:"2023/10/21");

  script_cve_id("CVE-2018-18065");
  script_xref(name:"USN", value:"3792-1");

  script_name(english:"Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS : Net-SNMP vulnerability (USN-3792-1)");

  script_set_attribute(attribute:"synopsis", value:
"The remote Ubuntu host is missing a security update.");
  script_set_attribute(attribute:"description", value:
"It was discovered that Net-SNMP incorrectly handled certain certain
crafted packets. A remote attacker could possibly use this issue to
cause Net-SNMP to crash, resulting in a denial of service.

Note that Tenable Network Security has extracted the preceding
description block directly from the Ubuntu security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues.");
  script_set_attribute(attribute:"see_also", value:"https://ubuntu.com/security/notices/USN-3792-1");
  script_set_attribute(attribute:"solution", value:
"Update the affected packages.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:S/C:N/I:N/A:P");
  script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:P/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2018-18065");

  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");

  script_set_attribute(attribute:"vuln_publication_date", value:"2018/10/08");
  script_set_attribute(attribute:"patch_publication_date", value:"2018/10/15");
  script_set_attribute(attribute:"plugin_publication_date", value:"2018/10/16");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libsnmp30");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:python-netsnmp");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:snmp");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:snmpd");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:snmptrapd");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:tkmib");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:14.04:-:lts");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:16.04:-:lts");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:18.04:-:lts");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libsnmp-base");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libsnmp-dev");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libsnmp-perl");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Ubuntu Local Security Checks");

  script_copyright(english:"Ubuntu Security Notice (C) 2018-2023 Canonical, Inc. / NASL script (C) 2018-2023 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/cpu", "Host/Ubuntu", "Host/Ubuntu/release", "Host/Debian/dpkg-l");

  exit(0);
}

include('debian_package.inc');

if ( ! get_kb_item('Host/local_checks_enabled') ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
var os_release = get_kb_item('Host/Ubuntu/release');
if ( isnull(os_release) ) audit(AUDIT_OS_NOT, 'Ubuntu');
os_release = chomp(os_release);
if (! ('14.04' >< os_release || '16.04' >< os_release || '18.04' >< os_release)) audit(AUDIT_OS_NOT, 'Ubuntu 14.04 / 16.04 / 18.04', 'Ubuntu ' + os_release);
if ( ! get_kb_item('Host/Debian/dpkg-l') ) audit(AUDIT_PACKAGE_LIST_MISSING);

var cpu = get_kb_item('Host/cpu');
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ('x86_64' >!< cpu && cpu !~ "^i[3-6]86$" && 's390' >!< cpu && 'aarch64' >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'Ubuntu', cpu);

var pkgs = [
    {'osver': '14.04', 'pkgname': 'libsnmp-base', 'pkgver': '5.7.2~dfsg-8.1ubuntu3.3'},
    {'osver': '14.04', 'pkgname': 'libsnmp-dev', 'pkgver': '5.7.2~dfsg-8.1ubuntu3.3'},
    {'osver': '14.04', 'pkgname': 'libsnmp-perl', 'pkgver': '5.7.2~dfsg-8.1ubuntu3.3'},
    {'osver': '14.04', 'pkgname': 'libsnmp30', 'pkgver': '5.7.2~dfsg-8.1ubuntu3.3'},
    {'osver': '14.04', 'pkgname': 'python-netsnmp', 'pkgver': '5.7.2~dfsg-8.1ubuntu3.3'},
    {'osver': '14.04', 'pkgname': 'snmp', 'pkgver': '5.7.2~dfsg-8.1ubuntu3.3'},
    {'osver': '14.04', 'pkgname': 'snmpd', 'pkgver': '5.7.2~dfsg-8.1ubuntu3.3'},
    {'osver': '14.04', 'pkgname': 'tkmib', 'pkgver': '5.7.2~dfsg-8.1ubuntu3.3'},
    {'osver': '16.04', 'pkgname': 'libsnmp-base', 'pkgver': '5.7.3+dfsg-1ubuntu4.2'},
    {'osver': '16.04', 'pkgname': 'libsnmp-dev', 'pkgver': '5.7.3+dfsg-1ubuntu4.2'},
    {'osver': '16.04', 'pkgname': 'libsnmp-perl', 'pkgver': '5.7.3+dfsg-1ubuntu4.2'},
    {'osver': '16.04', 'pkgname': 'libsnmp30', 'pkgver': '5.7.3+dfsg-1ubuntu4.2'},
    {'osver': '16.04', 'pkgname': 'python-netsnmp', 'pkgver': '5.7.3+dfsg-1ubuntu4.2'},
    {'osver': '16.04', 'pkgname': 'snmp', 'pkgver': '5.7.3+dfsg-1ubuntu4.2'},
    {'osver': '16.04', 'pkgname': 'snmpd', 'pkgver': '5.7.3+dfsg-1ubuntu4.2'},
    {'osver': '16.04', 'pkgname': 'snmptrapd', 'pkgver': '5.7.3+dfsg-1ubuntu4.2'},
    {'osver': '16.04', 'pkgname': 'tkmib', 'pkgver': '5.7.3+dfsg-1ubuntu4.2'},
    {'osver': '18.04', 'pkgname': 'libsnmp-base', 'pkgver': '5.7.3+dfsg-1.8ubuntu3.1'},
    {'osver': '18.04', 'pkgname': 'libsnmp-dev', 'pkgver': '5.7.3+dfsg-1.8ubuntu3.1'},
    {'osver': '18.04', 'pkgname': 'libsnmp-perl', 'pkgver': '5.7.3+dfsg-1.8ubuntu3.1'},
    {'osver': '18.04', 'pkgname': 'libsnmp30', 'pkgver': '5.7.3+dfsg-1.8ubuntu3.1'},
    {'osver': '18.04', 'pkgname': 'python-netsnmp', 'pkgver': '5.7.3+dfsg-1.8ubuntu3.1'},
    {'osver': '18.04', 'pkgname': 'snmp', 'pkgver': '5.7.3+dfsg-1.8ubuntu3.1'},
    {'osver': '18.04', 'pkgname': 'snmpd', 'pkgver': '5.7.3+dfsg-1.8ubuntu3.1'},
    {'osver': '18.04', 'pkgname': 'snmptrapd', 'pkgver': '5.7.3+dfsg-1.8ubuntu3.1'},
    {'osver': '18.04', 'pkgname': 'tkmib', 'pkgver': '5.7.3+dfsg-1.8ubuntu3.1'}
];

var flag = 0;
foreach package_array ( pkgs ) {
  var osver = NULL;
  var pkgname = NULL;
  var pkgver = NULL;
  if (!empty_or_null(package_array['osver'])) osver = package_array['osver'];
  if (!empty_or_null(package_array['pkgname'])) pkgname = package_array['pkgname'];
  if (!empty_or_null(package_array['pkgver'])) pkgver = package_array['pkgver'];
  if (osver && pkgname && pkgver) {
    if (ubuntu_check(osver:osver, pkgname:pkgname, pkgver:pkgver)) flag++;
  }
}

if (flag)
{
  security_report_v4(
    port       : 0,
    severity   : SECURITY_WARNING,
    extra      : ubuntu_report_get()
  );
  exit(0);
}
else
{
  var tested = ubuntu_pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'libsnmp-base / libsnmp-dev / libsnmp-perl / libsnmp30 / etc');
}
VendorProductVersionCPE
canonicalubuntu_linuxlibsnmp30p-cpe:/a:canonical:ubuntu_linux:libsnmp30
canonicalubuntu_linuxpython-netsnmpp-cpe:/a:canonical:ubuntu_linux:python-netsnmp
canonicalubuntu_linuxsnmpp-cpe:/a:canonical:ubuntu_linux:snmp
canonicalubuntu_linuxsnmpdp-cpe:/a:canonical:ubuntu_linux:snmpd
canonicalubuntu_linuxsnmptrapdp-cpe:/a:canonical:ubuntu_linux:snmptrapd
canonicalubuntu_linuxtkmibp-cpe:/a:canonical:ubuntu_linux:tkmib
canonicalubuntu_linux14.04cpe:/o:canonical:ubuntu_linux:14.04:-:lts
canonicalubuntu_linux16.04cpe:/o:canonical:ubuntu_linux:16.04:-:lts
canonicalubuntu_linux18.04cpe:/o:canonical:ubuntu_linux:18.04:-:lts
canonicalubuntu_linuxlibsnmp-basep-cpe:/a:canonical:ubuntu_linux:libsnmp-base
Rows per page:
1-10 of 121

Related

nessus 15
debian 2
paloalto 1
osv 3
redhatcve 1
openvas 14
cvelist 1
cve 1
ubuntucve 1
suse 3
prion 1
ubuntu 3
veracode 1
debiancve 1
ics 1
fedora 1
ibm 3
archlinux 1
photon 4
rosalinux 1
oracle 1
nessus
nessus
openSUSE Security Update : net-snmp (openSUSE-2018-1313)
2018-10-29 00:00:00
Debian DSA-4314-1 : net-snmp - security update
2018-10-12 00:00:00
Palo Alto Networks < 7.1.23 / 8.0.x < 8.0.16 / 8.1.x < 8.1.7 Denial of Service vulnerability (PAN-SA-2019-0007)
2019-04-02 00:00:00
debian
debian
[SECURITY] [DSA 4314-1] net-snmp security update
2018-10-11 19:40:56
[SECURITY] [DSA 4314-1] net-snmp security update
2018-10-11 19:41:22
paloalto
paloalto
Denial of Service in PAN-OS Management Interface
2019-03-20 21:20:00
osv
osv
net-snmp - security update
2018-10-09 00:00:00
CVE-2018-18065
2018-10-08 18:29:00
net-snmp - security update
2018-10-11 00:00:00
redhatcve
redhatcve
CVE-2018-18065
2018-10-09 14:20:23
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2018:3319-1)
2021-04-19 00:00:00
Ubuntu: Security Advisory (USN-3792-1)
2018-10-16 00:00:00
Debian: Security Advisory (DSA-4314-1)
2018-10-10 00:00:00
cvelist
cvelist
CVE-2018-18065
2018-10-08 18:00:00
cve
cve
CVE-2018-18065
2018-10-08 18:29:00
ubuntucve
ubuntucve
CVE-2018-18065
2018-10-08 00:00:00
suse
suse
Security update for net-snmp (important)
2018-10-27 00:17:44
Security update for net-snmp (important)
2018-10-24 15:16:26
Security update for opera (important)
2022-02-25 00:00:00
prion
prion
Null pointer dereference
2018-10-08 18:29:00
ubuntu
ubuntu
Net-SNMP vulnerability
2018-10-15 00:00:00
Net-SNMP vulnerability
2018-10-16 00:00:00
Net-SNMP vulnerability
2018-10-22 00:00:00
veracode
veracode
Denial Of Service (DoS)
2018-10-09 06:23:50
debiancve
debiancve
CVE-2018-18065
2018-10-08 18:29:00
ics
ics
Siemens Industrial Products SNMP (Update F)
2022-04-14 12:00:00
fedora
fedora
[SECURITY] Fedora 29 Update: net-snmp-5.8-3.fc29
2018-12-02 08:28:31
ibm
ibm
Security Bulletin: Security Vulnerabilities affect IBM Cloud Private MongoDB
2019-03-07 20:15:02
Security Bulletin: Security Vulnerabilities affect IBM Cloud Private Logging
2019-03-07 20:10:01
Security Bulletin: Vyatta 5600 vRouter Software Patches - Release 1801-s, 1801-t and 1801-u
2018-12-05 22:20:01
archlinux
archlinux
[ASA-201810-11] net-snmp: multiple issues
2018-10-17 00:00:00
photon
photon
Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2019-2.0-0118
2019-01-07 00:00:00
Important Photon OS Security Update - PHSA-2019-0118
2019-01-07 00:00:00
Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2019-1.0-0203
2019-01-18 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2021-1929
2021-07-02 17:32:57
oracle
oracle
Oracle Critical Patch Update Advisory - October 2019
2020-01-22 00:00:00
JSON
Related for UBUNTU_USN-3792-1.NASL
nessus15debian2paloalto1osv3redhatcve1openvas14cvelist1cve1ubuntucve1suse3prion1ubuntu3veracode1debiancve1ics1fedora1ibm3archlinux1photon4rosalinux1oracle1