Lucene search

K
ubuntuUbuntuUSN-564-1
HistoryJan 09, 2008 - 12:00 a.m.

Net-SNMP vulnerability

2008-01-0900:00:00
ubuntu.com
33

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

AI Score

6.3

Confidence

Low

EPSS

0.794

Percentile

98.3%

Releases

  • Ubuntu 7.10
  • Ubuntu 7.04
  • Ubuntu 6.10
  • Ubuntu 6.06

Packages

  • net-snmp -

Details

Bill Trost discovered that snmpd did not properly limit GETBULK
requests. A remote attacker could specify a large number of
max-repetitions and cause a denial of service via resource
exhaustion.

OSVersionArchitecturePackageVersionFilename
Ubuntu7.10noarchsnmpd< 5.3.1-6ubuntu2.1UNKNOWN
Ubuntu7.10noarchlibsnmp-dev< 5.3.1-6ubuntu2.1UNKNOWN
Ubuntu7.10noarchlibsnmp-perl< 5.3.1-6ubuntu2.1UNKNOWN
Ubuntu7.10noarchlibsnmp10< 5.3.1-6ubuntu2.1UNKNOWN
Ubuntu7.10noarchsnmp< 5.3.1-6ubuntu2.1UNKNOWN
Ubuntu7.04noarchsnmpd< 5.2.3-4ubuntu1.1UNKNOWN
Ubuntu7.04noarchlibsnmp-perl< 5.2.3-4ubuntu1.1UNKNOWN
Ubuntu7.04noarchlibsnmp9< 5.2.3-4ubuntu1.1UNKNOWN
Ubuntu7.04noarchlibsnmp9-dev< 5.2.3-4ubuntu1.1UNKNOWN
Ubuntu7.04noarchsnmp< 5.2.3-4ubuntu1.1UNKNOWN
Rows per page:
1-10 of 201

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

AI Score

6.3

Confidence

Low

EPSS

0.794

Percentile

98.3%