Lucene search
K

53 matches found

UbuntuCve
UbuntuCve
added 2020/06/25 10:15 a.m.29 views

CVE-2019-20892

net-snmp before 5.8.1.pre1 has a double free in usmfreeusmStateReference in snmplib/snmpusm.c via an SNMPv3 GetBulk request. NOTE: this affects net-snmp packages shipped to end users by multiple Linux distributions, but might not affect an upstream release...

6.5CVSS6.8AI score0.02315EPSS
Exploits1References4
Cvelist
Cvelist
added 2020/06/25 9:7 a.m.28 views

CVE-2019-20892

net-snmp before 5.8.1.pre1 has a double free in usmfreeusmStateReference in snmplib/snmpusm.c via an SNMPv3 GetBulk request. NOTE: this affects net-snmp packages shipped to end users by multiple Linux distributions, but might not affect an upstream release...

6.6AI score0.02315EPSS
Exploits1References8
Debian CVE
Debian CVE
added 2020/06/25 9:7 a.m.55 views

CVE-2019-20892

net-snmp before 5.8.1.pre1 has a double free in usmfreeusmStateReference in snmplib/snmpusm.c via an SNMPv3 GetBulk request. NOTE: this affects net-snmp packages shipped to end users by multiple Linux distributions, but might not affect an upstream release...

6.5CVSS6.8AI score0.02315EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2014/07/11 12:0 a.m.3155 views

SNMP 'GETBULK' Reflection DDoS

The remote SNMP daemon is responding with a large amount of data to a 'GETBULK' request with a larger than normal value for 'max-repetitions'. A remote attacker can use this SNMP server to conduct a reflected distributed denial of service attack on an arbitrary remote host. TRUSTED...

7.5CVSS6.4AI score0.04926EPSS
Exploits1References2
The Hacker News
The Hacker News
added 2014/05/22 9:11 p.m.16 views

SNMP Reflection DDoS Attacks on the Rise

The DDoS techniques have massively increased with the attackers becoming more skillful at working around the network security. A massive 300Gbps DDoS attack launched against Spamhaus website almost broke the Internet a year ago and also earlier this year, hackers have succeeded in reaching new...

6.7AI score
Exploits0
Check Point Advisories
Check Point Advisories
added 2014/03/27 12:0 a.m.19 views

FreeBSD bsnmpd GETBULK PDU Stack Buffer Overflow - ver 2 (CVE-2014-1452)

A remote code execution vulnerability exists in the FreeBSD. The vulnerability is caused due to improper handling of crafted GETBULK PDU requests. A remote, unauthenticated attacker can exploit these vulnerabilities to execute arbitrary code on the target system within the security context of...

5.8CVSS8AI score0.01894EPSS
Exploits1
Check Point Advisories
Check Point Advisories
added 2014/02/16 12:0 a.m.10 views

FreeBSD bsnmpd GETBULK PDU Stack Buffer Overflow (CVE-2014-1452)

A remote code execution vulnerability exists in the FreeBSD. The vulnerability is caused due to improper handling of crafted GETBULK PDU requests. A remote,unauthenticated attacker can exploit these vulnerabilities to execute arbitrary code on the target system within the security context of bsnm...

5.8CVSS7.8AI score0.01894EPSS
Exploits1
securityvulns
securityvulns
added 2014/01/19 12:0 a.m.38 views

bsnmpd buffer overflow

Buffer overflow on GETBULK request processing...

5.8CVSS3.9AI score0.01894EPSS
Exploits1References1Affected Software1
seebug.org
seebug.org
added 2014/01/17 12:0 a.m.25 views

FreeBSD bsnmpd 'GETBULK PDU'请求远程栈缓冲区溢出漏洞

BUGTRAQ ID: 64967 CVECAN ID: CVE-2014-1452 FreeBSD bsnmpd是简单的可扩展SNMP后台程序。 bsnmpd8后台程序在处理特制的GETBULK PDU请求时存在栈缓冲区溢出漏洞,成功利用后可导致在服务程序上下文中执行任意代码,造成拒绝服务。 0 FreeBSD FreeBSD 9.x 临时解决方法: FreeBSD推荐下列三种做法: 1 升级您现在受影响的系统到漏洞修复日期后的FreeBSD stable或 release / security branch releng。 2 用源代码补丁更新您的受影响系统:...

5.8CVSS0.4AI score0.01894EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2009/09/24 12:0 a.m.29 views

SuSE9 Security Update : net-snmp (YOU Patch Number 12298)

Remote attackers could crash net-snmp via GETBULK-Request. CVE-2008-4309 In addition the following non-security issues have been fixed : - typo in error message bnc439857 - make OIDs longer than 256 chars work bnc345914 - typo in the snmpd init script to really load all agents bnc415127 - logrota...

7.5CVSS6.4AI score0.04926EPSS
Exploits1References2
Prion
Prion
added 2009/06/26 6:30 p.m.27 views

Code injection

agent/snmpagent.c in snmpd in net-snmp 5.0.9 in Red Hat Enterprise Linux RHEL 3 allows remote attackers to cause a denial of service daemon crash via a crafted SNMP GETBULK request that triggers a divide-by-zero error. NOTE: this vulnerability exists because of an incorrect fix for CVE-2008-4309...

5CVSS6.6AI score0.04926EPSS
Exploits1References5Affected Software1
Debian CVE
Debian CVE
added 2009/06/26 6:0 p.m.37 views

CVE-2009-1887

agent/snmpagent.c in snmpd in net-snmp 5.0.9 in Red Hat Enterprise Linux RHEL 3 allows remote attackers to cause a denial of service daemon crash via a crafted SNMP GETBULK request that triggers a divide-by-zero error. NOTE: this vulnerability exists because of an incorrect fix for CVE-2008-4309...

5CVSS6.3AI score0.02214EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2009/06/25 2:34 p.m.3 views

net-snmp: DoS (division by zero) via SNMP GetBulk requests

agent/snmpagent.c in snmpd in net-snmp 5.0.9 in Red Hat Enterprise Linux RHEL 3 allows remote attackers to cause a denial of service daemon crash via a crafted SNMP GETBULK request that triggers a divide-by-zero error. NOTE: this vulnerability exists because of an incorrect fix for CVE-2008-4309...

5CVSS5.9AI score0.02214EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2009/04/23 12:0 a.m.48 views

Ubuntu 6.06 LTS / 7.10 / 8.04 LTS / 8.10 : net-snmp vulnerabilities (USN-685-1)

Wes Hardaker discovered that the SNMP service did not correctly validate HMAC authentication requests. An unauthenticated remote attacker could send specially crafted SNMPv3 traffic with a valid username and gain access to the user's views without a valid authentication passphrase. CVE-2008-0960...

10CVSS6.5AI score0.6879EPSS
Exploits15References4
Tenable Nessus
Tenable Nessus
added 2009/04/23 12:0 a.m.29 views

Mandriva Linux Security Advisory : net-snmp (MDVSA-2008:225)

A denial of service vulnerability was discovered in how Net-SNMP processed GETBULK requests. A remote attacker with read access to the SNMP server could issue a specially crafted request which would cause snmpd to crash CVE-2008-4309. Please note that for this to be successfully exploited, an...

7.5CVSS6.3AI score0.04926EPSS
Exploits1References1
OpenVAS
OpenVAS
added 2009/04/09 12:0 a.m.24 views

Mandriva Update for net-snmp MDVSA-2008:225 (net-snmp)

Check for the Version of net-snmp OpenVAS Vulnerability Test Mandriva Update for net-snmp MDVSA-2008:225 net-snmp Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it...

5CVSS7.1AI score0.04926EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2009/03/23 12:0 a.m.31 views

Ubuntu Update for net-snmp vulnerabilities USN-685-1

Ubuntu Update for Linux kernel vulnerabilities USN-685-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN6851.nasl 7969 2017-12-01 09:23:16Z santu $ Ubuntu Update for net-snmp vulnerabilities USN-685-1 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH,...

10CVSS7.1AI score0.6879EPSS
Exploits15References2
OpenVAS
OpenVAS
added 2009/02/27 12:0 a.m.37 views

CentOS Update for net-snmp CESA-2008:0971 centos3 x86_64

Check for the Version of net-snmp OpenVAS Vulnerability Test CentOS Update for net-snmp CESA-2008:0971 centos3 x8664 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify i...

5CVSS7.1AI score0.04926EPSS
Exploits1References2
Check Point Advisories
Check Point Advisories
added 2009/02/06 12:0 a.m.8 views

Update Protection against Net-SNMP Denial of Service

Net-SNMP is a suite of applications used to implement SNMP v1, SNMP v2c and SNMP v3. Net-SNMP is available for many Unix and Unix-like operating systems and also for Microsoft Windows. Net-SNMP is vulnerable to a denial of service that can be triggerred by sending a specially-crafted SNMP GETBULK...

5CVSS6.1AI score0.04926EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2009/01/22 12:0 a.m.30 views

GLSA-200901-15 : Net-SNMP: Denial of Service

The remote host is affected by the vulnerability described in GLSA-200901-15 Net-SNMP: Denial of Service Oscar Mira-Sanchez reported an integer overflow in the netsnmpcreatesubtreecache function in agent/snmpagent.c when processing GETBULK requests. Impact : A remote attacker could send a special...

7.5CVSS6.5AI score0.04926EPSS
Exploits1References2
Rows per page
Query Builder