Lucene search

K
ubuntucveUbuntu.comUB:CVE-2007-5846
HistoryNov 06, 2007 - 12:00 a.m.

CVE-2007-5846

2007-11-0600:00:00
ubuntu.com
ubuntu.com
14

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.794 High

EPSS

Percentile

98.3%

The SNMP agent (snmp_agent.c) in net-snmp before 5.4.1 allows remote
attackers to cause a denial of service (CPU and memory consumption) via a
GETBULK request with a large max-repeaters value.

Bugs

Notes

Author Note
jdstrand bug report has debdiffs raised to medium as it is remote DoS
OSVersionArchitecturePackageVersionFilename
ubuntu6.06noarchnet-snmp< 5.2.1.2-4ubuntu2.2UNKNOWN
ubuntu6.10noarchnet-snmp< 5.2.2-5ubuntu1.1UNKNOWN
ubuntu7.04noarchnet-snmp< 5.2.3-4ubuntu1.1UNKNOWN
ubuntu7.10noarchnet-snmp< 5.3.1-6ubuntu2.1UNKNOWN

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.794 High

EPSS

Percentile

98.3%