5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.009 Low
EPSS
Percentile
82.9%
agent/snmp_agent.c in snmpd in net-snmp 5.0.9 in Red Hat Enterprise Linux
(RHEL) 3 allows remote attackers to cause a denial of service (daemon
crash) via a crafted SNMP GETBULK request that triggers a divide-by-zero
error. NOTE: this vulnerability exists because of an incorrect fix for
CVE-2008-4309.
Author | Note |
---|---|
jdstrand | only affected RedHat 3 which backported a patch to 5.0.9 which did not yet have another patch applied. Dapper and higher are not affected |