Lucene search
Ubuntu.comUB:CVE-2008-2292HistoryMay 18, 2008 - 12:00 a.m.
CVE-2008-2292
2008-05-1800:00:00
ubuntu.com
ubuntu.com
17
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.238 Low
EPSS
Percentile
96.5%
Buffer overflow in the __snprint_value function in snmp_get in Net-SNMP
5.1.4, 5.2.4, and 5.4.1, as used in SNMP.xs for Perl, allows remote
attackers to cause a denial of service (crash) and possibly execute
arbitrary code via a large OCTETSTRING in an attribute value pair (AVP).
Bugs
- <http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=482333>
- <https://bugs.edge.launchpad.net/ubuntu/+source/net-snmp/+bug/241892>
Notes
| Author | Note |
|---|---|
| nxvl | Upstream patch for 5.4 branch: http://net-snmp.svn.sourceforge.net/viewvc/net-snmp/branches/V5-4-patches/net-snmp/perl/SNMP/SNMP.xs?r1=16765&r2=16770&view=patch |
Related
openvas
openvas
Solaris Update for SMA 120273-27
2009-10-13 00:00:00
Solaris Update for SMA 120273-25
2009-06-03 00:00:00
Solaris Update for SMA 120272-23
2009-06-03 00:00:00
prion
prion
Buffer overflow
2008-05-18 14:20:00
exploitpack
exploitpack
Net-SNMP 5.1.45.2.45.4.1 Perl Module - Buffer Overflow (PoC)
2008-11-12 00:00:00
veracode
veracode
Arbitrary Code Execution
2020-04-10 00:31:19
seebug
seebug
Net-SNMP <= 5.1.4/5.2.4/5.4.1 Perl Module Buffer Overflow PoC
2008-11-13 00:00:00
Sun Solaris็ณป็ป็ฎก็ไปฃ็SNMPๅฎๆค็จๅบ็ผๅฒๅบๆบขๅบๆผๆด
2008-07-21 00:00:00
Net-SNMP <= 5.1.4/5.2.4/5.4.1 Perl Module Buffer Overflow PoC
2014-07-01 00:00:00
cve
cve
CVE-2008-2292
2008-05-18 14:20:00
packetstorm
packetstorm
netsnmp-overflow.txt
2008-11-12 00:00:00
debiancve
debiancve
CVE-2008-2292
2008-05-18 14:20:00
exploitdb
exploitdb
Net-SNMP 5.1.4/5.2.4/5.4.1 Perl Module - Buffer Overflow (PoC)
2008-11-12 00:00:00
nessus
nessus
RHEL 4 / 5 : net-snmp (RHSA-2008:0529)
2008-06-12 00:00:00
GLSA-200808-02 : Net-SNMP: Multiple vulnerabilities
2008-08-07 00:00:00
Fedora 8 : net-snmp-5.4.1-7.fc8 (2008-5218)
2008-06-12 00:00:00
cert
cert
SNMPv3 improper HMAC validation allows authentication bypass
2008-06-10 00:00:00
slackware
slackware
[slackware-security] net-snmp
2008-07-29 05:33:31
fedora
fedora
[SECURITY] Fedora 9 Update: net-snmp-5.4.1-18.fc9
2008-06-11 04:39:24
[SECURITY] Fedora 8 Update: net-snmp-5.4.1-7.fc8
2008-06-11 04:39:34
[SECURITY] Fedora 7 Update: net-snmp-5.4-18.fc7
2008-06-11 04:39:52
gentoo
gentoo
Net-SNMP: Multiple vulnerabilities
2008-08-06 00:00:00
oraclelinux
oraclelinux
net-snmp security update
2008-06-10 00:00:00
redhat
redhat
(RHSA-2008:0529) Moderate: net-snmp security update
2008-06-10 00:00:00
centos
centos
net security update
2008-06-10 20:39:52
debian
debian
[SECURITY] [DSA 1663-1] New net-snmp packages fix several vulnerabilities
2008-11-09 09:49:16
securityvulns
securityvulns
net-snmp multiple security vulnerabilities
2009-07-20 00:00:00
[SECURITY] [DSA 1663-1] New net-snmp packages fix several vulnerabilities
2008-11-10 00:00:00
ubuntu
ubuntu
Net-SNMP vulnerabilities
2008-12-03 00:00:00
osv
osv
net-snmp - several vulnerabilities
2008-11-09 00:00:00
suse
suse
authentication bypass, denial-of-service in net-snmp
2008-08-01 13:33:56
vmware
vmware
Updated ESX packages for OpenSSL, net-snmp, perl
2008-08-12 00:00:00
Updated ESX packages for OpenSSL, net-snmp, perl
2008-08-12 00:00:00
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.238 Low
EPSS
Percentile
96.5%
Related for UB:CVE-2008-2292