136 matches found
Solaris 8 (sparc) : 112190-02
SSP 3.5: snmpd is not being updated for high temperatures. Date this patch was last updated by Sun : Apr/01/02 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc';...
Solaris 6 (sparc) : 110948-04
SSP 3.4: ssp 3.234 snmpd searches for libs in Sun internal path. Date this patch was last updated by Sun : Apr/01/02 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc';...
Solaris 7 (sparc) : 110948-04
SSP 3.4: ssp 3.234 snmpd searches for libs in Sun internal path. Date this patch was last updated by Sun : Apr/01/02 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc';...
Scientific Linux Security Update : net-snmp on SL5.x i386/x86_64 (20130108)
An out-of-bounds buffer read flaw was found in the net-snmp agent. A remote attacker with read privileges to a Management Information Base MIB subtree handled by the 'extend' directive in '/etc/snmp/snmpd.conf' could use this flaw to crash snmpd via a crafted SNMP GET request. CVE-2012-2141 Bug...
net-snmp: Array index error, leading to out-of heap-based buffer read (snmpd crash)
Array index error in the handlensExtendOutput2Table function in agent/mibgroup/agent/extend.c in Net-SNMP 5.7.1 allows remote authenticated users to cause a denial of service out-of-bounds read and snmpd crash via an SNMP GET request for an entry not in the extension table...
Moderate: Red Hat Security Advisory: net-snmp security and bug fix update
Updated net-snmp packages that fix one security issue and multiple bugs are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed...
[SECURITY] Fedora 16 Update: net-snmp-5.7.1-3.fc16
SNMP Simple Network Management Protocol is a protocol used for network management. The NET-SNMP project includes various SNMP tools: an extensible agent, an SNMP library, tools for requesting or setting information from SNMP agents, tools for generating and handling SNMP traps, a version of the...
Net-SNMP - SNMPD AgentX Subagent Timeout Denial of Service
Net-SNMP - SNMPD AgentX Subagent Timeout Denial of Service source: https://www.securityfocus.com/bid/64048/info Net-SNMP is prone to a remote denial-of-service vulnerability. Attackers can exploit this issue to cause the SNMPD to crash, exhaust CPU resources or trigger infinite loop; denying...
Net-SNMP - SNMPD AgentX Subagent Timeout Denial of Service
source: https://www.securityfocus.com/bid/64048/info Net-SNMP is prone to a remote denial-of-service vulnerability. Attackers can exploit this issue to cause the SNMPD to crash, exhaust CPU resources or trigger infinite loop; denying service to legitimate users. Net-SNMP 5.7.1 is vulnerable; othe...
CVE-2012-2141
Array index error in the handlensExtendOutput2Table function in agent/mibgroup/agent/extend.c in Net-SNMP 5.7.1 allows remote authenticated users to cause a denial of service out-of-bounds read and snmpd crash via an SNMP GET request for an entry not in the extension table...
Scientific Linux Security Update : net-snmp on SL3.x i386/x86_64
A divide-by-zero flaw was discovered in the snmpd daemon. A remote attacker could issue a specially crafted GETBULK request that could crash the snmpd daemon. CVE-2009-1887 Note: An attacker must have read access to the SNMP server in order to exploit this flaw. In the default configuration, the...
net-snmp security and bug fix update
1:5.5-41 - moved /var/lib/net-snmp fro net-snmp to net-snmp-libs package 822480 1:5.5-40 - fixed CVE-2012-2141 820100 1:5.5-39 - fixed proxying of out-of-tree GETNEXT requests 799291 1:5.5-38 - fixed snmpd crashing with many AgentX subagent 749227 - fixed SNMPv2-MIB::sysObjectID value when...
CentOS Update for net-snmp CESA-2009:1124 centos3 i386
Check for the Version of net-snmp OpenVAS Vulnerability Test CentOS Update for net-snmp CESA-2009:1124 centos3 i386 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it...
CentOS Update for net-snmp CESA-2009:1124 centos3 i386
The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Mandriva Update for net-snmp MDVA-2010:184 (net-snmp)
Check for the Version of net-snmp OpenVAS Vulnerability Test Mandriva Update for net-snmp MDVA-2010:184 net-snmp Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it...
MDVA-2010:184 : net-snmp
It was discovered that the snmpd daemon could segfault with certain configuration options. The updated packages addresses this problem. %NASLMINLEVEL 70300 @DEPRECATED@ This script has been deprecated as the associated patch is not currently a security fix. Disabled on 2012/09/06. C Tenable Netwo...
VMSA-2010-0003.1 ESX Service Console update for net-snmp
a. Service Console package net-snmp updatedThis patch updates the service console package for net-snmp, net-snmp-utils, and net-snmp-libs to version net-snmp-5.0.9-2.30E.28. This net-snmp update fixes a divide-by- zero flaw in the snmpd daemon. A remote attacker could issue a specially crafted...
SuSE9 Security Update : net-snmp (YOU Patch Number 12298)
Remote attackers could crash net-snmp via GETBULK-Request. CVE-2008-4309 In addition the following non-security issues have been fixed : - typo in error message bnc439857 - make OIDs longer than 256 chars work bnc345914 - typo in the snmpd init script to really load all agents bnc415127 - logrota...
Code injection
agent/snmpagent.c in snmpd in net-snmp 5.0.9 in Red Hat Enterprise Linux RHEL 3 allows remote attackers to cause a denial of service daemon crash via a crafted SNMP GETBULK request that triggers a divide-by-zero error. NOTE: this vulnerability exists because of an incorrect fix for CVE-2008-4309...
CVE-2009-1887
CVE-2009-1887 affects NET-SNMP’s snmpd (agent/snmp_agent.c). A remote attacker can trigger a divide-by-zero via a crafted SNMP GETBULK request, causing a denial of service (daemon crash). The root cause is an integer/subtree cache handling flaw in netsnmp_create_subtree_cache in agent/snmp_agent....