Lucene search
+L

1594 matches found

Gentoo Linux
Gentoo Linux
added 2008/08/06 12:0 a.m.41 views

Net-SNMP: Multiple vulnerabilities

Background Net-SNMP is a collection of tools for generating and retrieving SNMP data. The SNMPv3 protocol uses a keyed-Hash Message Authentication Code HMAC to verify data integrity and authenticity of SNMP messages. Description Wes Hardaker reported that the SNMPv3 HMAC verification relies on th...

10CVSS7.5AI score0.6879EPSS
Exploits14
F5 Networks
F5 Networks
added 2008/07/15 12:0 a.m.45 views

SOL8939 - SNMPv3 HMAC verification vulnerability CVE-2008-0960 - VU#878044

Information about this advisory is available at the following locations: F5 Product Development tracked this issue as CR99838 for BIG-IP LTM, GTM, ASM, PSM, Link Controller, and WebAccelerator and it was fixed in BIG-IP 9.4.6 and 10.0.0. For information about upgrading, refer to the BIG-IP LTM,...

10CVSS6.4AI score0.6879EPSS
Exploits7
seebug.org
seebug.org
added 2008/06/14 12:0 a.m.57 views

Net-SNMP远程绕过认证漏洞

BUGTRAQ ID: 29623 CVECAN ID: CVE-2008-0960 Net-SNMP是一个免费的、开放源码的SNMP实现,以前称为UCD-SNMP。 Net-SNMP处理认证的实现上存在漏洞,远程攻击者可能利用此漏洞绕过认证获取SNMP对象的访问。...

10CVSS0.6AI score0.6879EPSS
Exploits7
0day.today
0day.today
added 2008/06/12 12:0 a.m.82 views

SNMPv3 HMAC validation error Remote Authentication Bypass Exploit

Exploit for multiple platform in category remote exploits ================================================================= SNMPv3 HMAC validation error Remote Authentication Bypass Exploit ================================================================= snmpv3exp.sh exploit the vulnerability...

7.1AI score0.6879EPSS
Exploits7
exploitpack
exploitpack
added 2008/06/12 12:0 a.m.44 views

SNMPv3 - HMAC Validation error Remote Authentication Bypass

SNMPv3 - HMAC Validation error Remote Authentication Bypass snmpv3exp.sh exploit the vulnerability described in CVE-2008-0960, the HMAC check problem on multiple vendor Copyright c 2008 @ Mediaservice.net Srl. All rights reserved Wrote by Maurizio Agazzini http://lab.mediaservice.net/...

10CVSS0.7AI score0.6879EPSS
Exploits7
seebug.org
seebug.org
added 2008/06/12 12:0 a.m.77 views

SNMPv3 HMAC validation error Remote Authentication Bypass Exploit

No description provided by source. snmpv3exp.sh exploit the vulnerability described in CVE-2008-0960, the HMAC check problem on multiple vendor Copyright c 2008 @ Mediaservice.net Srl. All rights reserved Wrote by Maurizio Agazzini inodeatmediaservice.net http://lab.mediaservice.net/...

10CVSS0.4AI score0.6879EPSS
Exploits7
Exploit DB
Exploit DB
added 2008/06/12 12:0 a.m.453 views

SNMPv3 - HMAC Validation error Remote Authentication Bypass

snmpv3exp.sh exploit the vulnerability described in CVE-2008-0960, the HMAC check problem on multiple vendor Copyright c 2008 @ Mediaservice.net Srl. All rights reserved Wrote by Maurizio Agazzini http://lab.mediaservice.net/...

10CVSS6.7AI score0.6879EPSS
Exploits7
NVD
NVD
added 2008/06/10 6:32 p.m.22 views

CVE-2008-0960

SNMPv3 HMAC verification in 1 Net-SNMP 5.2.x before 5.2.4.1, 5.3.x before 5.3.2.1, and 5.4.x before 5.4.1.1; 2 UCD-SNMP; 3 eCos; 4 Juniper Session and Resource Control SRC C-series 1.0.0 through 2.0.0; 5 NetApp aka Network Appliance Data ONTAP 7.3RC1 and 7.3RC2; 6 SNMP Research before 16.2; 7...

10CVSS6.6AI score0.6879EPSS
Exploits7References64
Prion
Prion
added 2008/06/10 6:32 p.m.29 views

Authentication flaw

SNMPv3 HMAC verification in 1 Net-SNMP 5.2.x before 5.2.4.1, 5.3.x before 5.3.2.1, and 5.4.x before 5.4.1.1; 2 UCD-SNMP; 3 eCos; 4 Juniper Session and Resource Control SRC C-series 1.0.0 through 2.0.0; 5 NetApp aka Network Appliance Data ONTAP 7.3RC1 and 7.3RC2; 6 SNMP Research before 16.2; 7...

10CVSS6.8AI score0.6879EPSS
Exploits7References64Affected Software2
OSV
OSV
added 2008/06/10 6:32 p.m.10 views

CVE-2008-0960

SNMPv3 HMAC verification in 1 Net-SNMP 5.2.x before 5.2.4.1, 5.3.x before 5.3.2.1, and 5.4.x before 5.4.1.1; 2 UCD-SNMP; 3 eCos; 4 Juniper Session and Resource Control SRC C-series 1.0.0 through 2.0.0; 5 NetApp aka Network Appliance Data ONTAP 7.3RC1 and 7.3RC2; 6 SNMP Research before 16.2; 7...

6.7AI score
Exploits0References65
Debian CVE
Debian CVE
added 2008/06/10 6:0 p.m.26 views

CVE-2008-0960

SNMPv3 HMAC verification in 1 Net-SNMP 5.2.x before 5.2.4.1, 5.3.x before 5.3.2.1, and 5.4.x before 5.4.1.1; 2 UCD-SNMP; 3 eCos; 4 Juniper Session and Resource Control SRC C-series 1.0.0 through 2.0.0; 5 NetApp aka Network Appliance Data ONTAP 7.3RC1 and 7.3RC2; 6 SNMP Research before 16.2; 7...

10CVSS6.8AI score0.6879EPSS
Exploits7
CVE
CVE
added 2008/06/10 6:0 p.m.224 views

CVE-2008-0960

CVE-2008-0960 describes an SNMPv3 HMAC verification flaw where the client specifies the HMAC length, enabling spoofing of authenticated SNMPv3 packets. Affected implementations include Net-SNMP 5.2.x (pre-5.2.4.1), 5.3.x (pre-5.3.2.1), 5.4.x (pre-5.4.1.1); UCD-SNMP; eCos; Juniper SRC C-series (1....

10CVSS6.7AI score0.6879EPSS
Exploits7References64Affected Software2
Cvelist
Cvelist
added 2008/06/10 6:0 p.m.31 views

CVE-2008-0960

SNMPv3 HMAC verification in 1 Net-SNMP 5.2.x before 5.2.4.1, 5.3.x before 5.3.2.1, and 5.4.x before 5.4.1.1; 2 UCD-SNMP; 3 eCos; 4 Juniper Session and Resource Control SRC C-series 1.0.0 through 2.0.0; 5 NetApp aka Network Appliance Data ONTAP 7.3RC1 and 7.3RC2; 6 SNMP Research before 16.2; 7...

6.6AI score0.6879EPSS
Exploits7References64
RedHat Linux
RedHat Linux
added 2008/06/10 2:7 p.m.45 views

Moderate: Red Hat Security Advisory: net-snmp security update

Updated net-snmp packages that fix a security issue are now available for Red Hat Enterprise Linux 3, 4, and 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. The Simple Network Management Protocol SNMP is a protocol used for network managemen...

10CVSS6.8AI score0.6879EPSS
Exploits14References3
RedHat Linux
RedHat Linux
added 2008/06/10 2:7 p.m.79 views

net-snmp SNMPv3 authentication bypass (VU#877044)

SNMPv3 HMAC verification in 1 Net-SNMP 5.2.x before 5.2.4.1, 5.3.x before 5.3.2.1, and 5.4.x before 5.4.1.1; 2 UCD-SNMP; 3 eCos; 4 Juniper Session and Resource Control SRC C-series 1.0.0 through 2.0.0; 5 NetApp aka Network Appliance Data ONTAP 7.3RC1 and 7.3RC2; 6 SNMP Research before 16.2; 7...

10CVSS5.9AI score0.6879EPSS
Exploits7References4
RedHat Linux
RedHat Linux
added 2008/06/10 7:1 a.m.38 views

Moderate: Red Hat Security Advisory: ucd-snmp security update

Updated ucd-snmp packages that fix a security issue are now available for Red Hat Enterprise Linux 2.1. This update has been rated as having moderate security impact by the Red Hat Security Response Team. The Simple Network Management Protocol SNMP is a protocol used for network management. A fla...

10CVSS6.5AI score0.6879EPSS
Exploits7References2
RedHat Linux
RedHat Linux
added 2008/06/10 7:1 a.m.7 views

net-snmp SNMPv3 authentication bypass (VU#877044)

SNMPv3 HMAC verification in 1 Net-SNMP 5.2.x before 5.2.4.1, 5.3.x before 5.3.2.1, and 5.4.x before 5.4.1.1; 2 UCD-SNMP; 3 eCos; 4 Juniper Session and Resource Control SRC C-series 1.0.0 through 2.0.0; 5 NetApp aka Network Appliance Data ONTAP 7.3RC1 and 7.3RC2; 6 SNMP Research before 16.2; 7...

10CVSS5.9AI score0.6879EPSS
Exploits7References4
securityvulns
securityvulns
added 2008/06/10 12:0 a.m.77 views

[oCERT-2008-006] multiple SNMP implementations HMAC authentication spoofing

2008/06/09 2008-006 multiple SNMP implementations HMAC authentication spoofing Description: Some SNMP implementations include incomplete HMAC authentication code that allows spoofing of authenticated SNMPv3 packets. The authentication code reads the length to be checked from sender input, this...

10CVSS0.7AI score0.6879EPSS
Exploits7
CERT
CERT
added 2008/06/10 12:0 a.m.98 views

SNMPv3 improper HMAC validation allows authentication bypass

Overview A vulnerability in the way implementations of SNMPv3 handle specially crafted packets may allow authentication bypass. Description SNMP can be configured to utilize version 3, which is the current standard version of SNMP. SNMPv3 incorporates security features such as authentication and...

6.7AI score
Exploits0References5
Prion
Prion
added 2008/03/20 12:44 a.m.15 views

Authentication flaw

Plone CMS 3.x uses invariant data a client username and a server secret when calculating an HMAC-SHA1 value for an authentication cookie, which makes it easier for remote attackers to gain permanent access to an account by sniffing the network...

4.3CVSS7.6AI score0.0113EPSS
Exploits0References4
Rows per page
Query Builder