53 matches found
Net-SNMP: Denial of service
Background Net-SNMP is a collection of tools for generating and retrieving SNMP data. Description Oscar Mira-Sanchez reported an integer overflow in the netsnmpcreatesubtreecache function in agent/snmpagent.c when processing GETBULK requests. Impact A remote attacker could send a specially crafte...
net-snmp: numresponses calculation integer overflow in snmp_agent.c
Integer overflow in the netsnmpcreatesubtreecache function in agent/snmpagent.c in net-snmp 5.4 before 5.4.2.1, 5.3 before 5.3.2.3, and 5.2 before 5.2.5.1 allows remote attackers to cause a denial of service crash via a crafted SNMP GETBULK request, which triggers a heap-based buffer overflow,...
CVE-2008-4309
Integer overflow in the netsnmpcreatesubtreecache function in agent/snmpagent.c in net-snmp 5.4 before 5.4.2.1, 5.3 before 5.3.2.3, and 5.2 before 5.2.5.1 allows remote attackers to cause a denial of service crash via a crafted SNMP GETBULK request, which triggers a heap-based buffer overflow,...
Integer overflow
Integer overflow in the netsnmpcreatesubtreecache function in agent/snmpagent.c in net-snmp 5.4 before 5.4.2.1, 5.3 before 5.3.2.3, and 5.2 before 5.2.5.1 allows remote attackers to cause a denial of service crash via a crafted SNMP GETBULK request, which triggers a heap-based buffer overflow,...
CVE-2008-4309
Integer overflow in the netsnmpcreatesubtreecache function in agent/snmpagent.c in net-snmp 5.4 before 5.4.2.1, 5.3 before 5.3.2.3, and 5.2 before 5.2.5.1 allows remote attackers to cause a denial of service crash via a crafted SNMP GETBULK request, which triggers a heap-based buffer overflow,...
PT-2008-1081
Name of the Vulnerable Software and Affected Versions net-snmp versions 5.1.2 through 5.3.1 net-snmp-devel versions 5.1.2 through 5.3.1 net-snmp-libs versions 5.1.2 through 5.3.1 net-snmp-utils versions 5.1.2 through 5.3.1 Description The issue is related to an integer overflow in the netsnmp...
SuSE 10 Security Update : net-snmp (ZYPP Patch Number 4755)
This update of net-snmp fixes the following bug : - default and configurable maximum number of varbinds returnable to a GETBULK request. CVE-2007-5846 - crash when smux peers were configured with empty passwords %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this...
Net-SNMP GETBULK远程拒绝服务漏洞
BUGTRAQ ID: 26378 CVECAN ID: CVE-2007-5846 Net-SNMP是一个免费的、开放源码的SNMP实现,以前称为UCD-SNMP。 Net-SNMP在处理畸形的SNMP GETBULK请求时存在漏洞,远程攻击者可能利用此漏洞导致服务器不可用。 Net-SNMP没有正确地处理SNMP GETBULK请求,如果远程攻击者发送了包含有超长max-repetitions字段的畸形SNMP GETBULK请求的话,就可能导致耗尽大量CPU和内存资源。 0 Net-SNMP net-snmp 5.4.1...
SNMP GETBULK Large max-repetitions Remote DoS
It is possible to disable the remote SNMP daemon by sending a GETBULK request with a large value for 'max-repetitions'. A remote attacker may be able to leverage this issue to cause the daemon to consume excessive memory and CPU on the affected system while it tries unsuccessfully to process the...
Design/Logic Flaw
The SNMP agent snmpagent.c in net-snmp before 5.4.1 allows remote attackers to cause a denial of service CPU and memory consumption via a GETBULK request with a large max-repeaters value...
CVE-2007-5846
The SNMP agent snmpagent.c in net-snmp before 5.4.1 allows remote attackers to cause a denial of service CPU and memory consumption via a GETBULK request with a large max-repeaters value...
DEBIAN-CVE-2007-5846
The SNMP agent snmpagent.c in net-snmp before 5.4.1 allows remote attackers to cause a denial of service CPU and memory consumption via a GETBULK request with a large max-repeaters value...
net-snmp -- denial of service via GETBULK request
CVE reports: The SNMP agent snmpagent.c in net-snmp before 5.4.1 allows remote attackers to cause a denial of service CPU and memory consumption via a GETBULK request with a large max-repeaters value...