Ubuntu Update for net-snmp vulnerabilities USN-685-1

Ubuntu Update for Linux kernel vulnerabilities USN-685-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN6851.nasl 7969 2017-12-01 09:23:16Z santu $ Ubuntu Update for net-snmp vulnerabilities USN-685-1 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH,...

RedHat Update for net-snmp RHSA-2008:0529-01

Check for the Version of net-snmp OpenVAS Vulnerability Test RedHat Update for net-snmp RHSA-2008:0529-01 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

CentOS Update for net-snmp CESA-2008:0529 centos4 x86_64

Check for the Version of net-snmp OpenVAS Vulnerability Test CentOS Update for net-snmp CESA-2008:0529 centos4 x8664 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify i...

DSA-1663-1 net-snmp - several vulnerabilities

Bulletin has no description...

kernel: sctp_getsockopt_hmac_ident information disclosure

The sctpgetsockopthmacident function in net/sctp/socket.c in the Stream Control Transmission Protocol sctp implementation in the Linux kernel before 2.6.26.4, when the SCTP-AUTH extension is enabled, relies on an untrusted length value to limit copying of data from kernel memory, which allows loc...

kernel: sctp: fix random memory dereference with SCTP_HMAC_IDENT option

The sctpauthepsethmacs function in net/sctp/auth.c in the Stream Control Transmission Protocol sctp implementation in the Linux kernel before 2.6.26.4, when the SCTP-AUTH extension is enabled, does not verify that the identifier index is within the bounds established by SCTPAUTHHMACIDMAX, which...

asiCMS alpha 0.208 Multiple Remote File Inclusion Vulnerabilities

No description provided by source. =========================================================================================== o asiCMS alpha 0.208 Multiple Remote File Inclusion Vulnerability Software : asiCMS version alpha 0.208 Vendor : http://asicms.sourceforge.net/ Download :...

Apple Mac OS X Java Applet HMAC供给器处理远程代码执行漏洞

BUGTRAQ ID: 31379 CVE ID：CVE-2008-3637 CNCVE ID：CNCVE-20083637 Apple Mac OS X是一款商业性质的操作系统。 Apple Mac OS X Java Applet HMAC供给器使用未初始化变量，远程攻击者可以利用漏洞以应用程序上下文执行任意代码。 基于HASH的消息验证代码HMAC供给器用于生成MD5和SHA-A HASH，其中存在一个错误检查可导致使用未初始化变量。构建恶意的Java applet，诱使用户访问，可导致任意代码执行。 Apple Mac OS X Server 10.5.5 Apple Mac O...

CVE-2008-3637

The Hash-based Message Authentication Code HMAC provider in Java on Apple Mac OS X 10.4.11, 10.5.4, and 10.5.5 uses an uninitialized variable, which allows remote attackers to execute arbitrary code via a crafted applet, related to an "error checking issue."...

Design/Logic Flaw

The Hash-based Message Authentication Code HMAC provider in Java on Apple Mac OS X 10.4.11, 10.5.4, and 10.5.5 uses an uninitialized variable, which allows remote attackers to execute arbitrary code via a crafted applet, related to an "error checking issue."...

CVE-2008-3637

The CVE-2008-3637 issue affects Java for Mac OS X on 10.4.11, 10.5.4, and 10.5.5, where the HMAC provider uses an uninitialized variable, enabling remote code execution via a crafted Java applet. OpenVAS/Nessus references show that Java for Mac OS X 10.5 Update 2 (and related 10.4 Release 7/10.5 ...

PT-2008-5010 · Oracle · Java

Name of the Vulnerable Software and Affected Versions: Java versions prior to the fixed version on Mac OS X 10.4.11, 10.5.4, and 10.5.5 Description: The issue is related to an error checking problem in the Hash-based Message Authentication Code HMAC provider in Java, which uses an uninitialized...

Nortel Switched Firewall产品SNMPv3 HMAC验证绕过漏洞

CNCAN ID：CNCAN-2008091606 Nortel Switched Firewall是一款交换式防火墙产品。 Nortel Switched Firewall不正确处理伪造的SNMPv3报文，远程攻击者可以利用漏洞绕过验证查看和修改设备配置。 SNMPv3的使用keyed-Hash Message Authentication Code HMAC进行验证，构建伪造的SNMPv3报文可绕过验证，读取和修改设备中的任意SNMP对象，导致设备的配置被泄漏和修改。 Nortel Switched Firewall 5100 Series Nortel Switched...

GLSA-200808-02 : Net-SNMP: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-200808-02 Net-SNMP: Multiple vulnerabilities Wes Hardaker reported that the SNMPv3 HMAC verification relies on the client to specify the HMAC length CVE-2008-0960. John Kortink reported a buffer overflow in the Perl bindings of...

Net-SNMP: Multiple vulnerabilities

Background Net-SNMP is a collection of tools for generating and retrieving SNMP data. The SNMPv3 protocol uses a keyed-Hash Message Authentication Code HMAC to verify data integrity and authenticity of SNMP messages. Description Wes Hardaker reported that the SNMPv3 HMAC verification relies on th...

SOL8939 - SNMPv3 HMAC verification vulnerability CVE-2008-0960 - VU#878044

Information about this advisory is available at the following locations: F5 Product Development tracked this issue as CR99838 for BIG-IP LTM, GTM, ASM, PSM, Link Controller, and WebAccelerator and it was fixed in BIG-IP 9.4.6 and 10.0.0. For information about upgrading, refer to the BIG-IP LTM,...

Net-SNMP远程绕过认证漏洞

BUGTRAQ ID: 29623 CVECAN ID: CVE-2008-0960 Net-SNMP是一个免费的、开放源码的SNMP实现，以前称为UCD-SNMP。 Net-SNMP处理认证的实现上存在漏洞，远程攻击者可能利用此漏洞绕过认证获取SNMP对象的访问。...

SNMPv3 HMAC validation error Remote Authentication Bypass Exploit

No description provided by source. snmpv3exp.sh exploit the vulnerability described in CVE-2008-0960, the HMAC check problem on multiple vendor Copyright c 2008 @ Mediaservice.net Srl. All rights reserved Wrote by Maurizio Agazzini inodeatmediaservice.net http://lab.mediaservice.net/...

SNMPv3 - HMAC Validation error Remote Authentication Bypass

snmpv3exp.sh exploit the vulnerability described in CVE-2008-0960, the HMAC check problem on multiple vendor Copyright c 2008 @ Mediaservice.net Srl. All rights reserved Wrote by Maurizio Agazzini http://lab.mediaservice.net/...

SNMPv3 HMAC validation error Remote Authentication Bypass Exploit

Exploit for multiple platform in category remote exploits ================================================================= SNMPv3 HMAC validation error Remote Authentication Bypass Exploit ================================================================= snmpv3exp.sh exploit the vulnerability...