Lucene search

K
nvd[email protected]NVD:CVE-2009-1887
HistoryJun 26, 2009 - 6:30 p.m.

CVE-2009-1887

2009-06-2618:30:00
CWE-369
web.nvd.nist.gov
7

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

AI Score

7.3

Confidence

High

EPSS

0.049

Percentile

92.8%

agent/snmp_agent.c in snmpd in net-snmp 5.0.9 in Red Hat Enterprise Linux (RHEL) 3 allows remote attackers to cause a denial of service (daemon crash) via a crafted SNMP GETBULK request that triggers a divide-by-zero error. NOTE: this vulnerability exists because of an incorrect fix for CVE-2008-4309.

Affected configurations

Nvd
Node
net-snmpnet-snmpMatch5.0.9
AND
redhatenterprise_linuxMatch3.0
VendorProductVersionCPE
net-snmpnet-snmp5.0.9cpe:2.3:a:net-snmp:net-snmp:5.0.9:*:*:*:*:*:*:*
redhatenterprise_linux3.0cpe:2.3:o:redhat:enterprise_linux:3.0:*:*:*:*:*:*:*

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

AI Score

7.3

Confidence

High

EPSS

0.049

Percentile

92.8%