7.8 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
The SNMP agent (snmp_agent.c) in net-snmp before 5.4.1 allows remote
attackers to cause a denial of service (CPU and memory consumption)
via a GETBULK request with a large max-repeaters value.
For the stable distribution (etch), this problem has been fixed in
version 5.2.3-7etch2.
For the unstable and testing distributions (sid and lenny,
respectively), this problem has been fixed in version 5.4.1~dfsg-2.
We recommend that you upgrade your net-snmp package.
CPE | Name | Operator | Version |
---|---|---|---|
net-snmp | eq | 5.2.3-7 | |
net-snmp | eq | 5.2.3-7etch1 |