6.4 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:P/A:N
0.004 Low
EPSS
Percentile
68.8%
The Net-SNMP project includes various Simple Network Management Protocol
(SNMP) tools.
A security issue in Net-SNMP versions before 5.0.9 could allow an existing
user/community to gain access to data in MIB objects that were explicitly
excluded from their view. The Common Vulnerabilities and Exposures project
(cve.mitre.org) has assigned the name CAN-2003-0935 to this issue.
Users of Net-SNMP are advised to upgrade to these errata packages containing
Net-SNMP 5.0.9 which is not vulnerable to this issue. In addition,
Net-SNMP 5.0.9 fixes a number of other minor bugs.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
RedHat | any | ia64 | net-snmp-utils | < 5.0.9-2.30E.1 | net-snmp-utils-5.0.9-2.30E.1.ia64.rpm |
RedHat | any | ia64 | net-snmp-devel | < 5.0.9-2.30E.1 | net-snmp-devel-5.0.9-2.30E.1.ia64.rpm |
RedHat | any | ia64 | net-snmp | < 5.0.9-2.30E.1 | net-snmp-5.0.9-2.30E.1.ia64.rpm |