Lucene search
UbuntuUSN-564-1HistoryJan 09, 2008 - 12:00 a.m.
Net-SNMP vulnerability
2008-01-0900:00:00
ubuntu.com
43
CVSS2
7.8
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
AI Score
6.3
Confidence
Low
EPSS
0.739
Percentile
98.2%
Releases
- Ubuntu 7.10
- Ubuntu 7.04
- Ubuntu 6.10
- Ubuntu 6.06
Packages
- net-snmp -
Details
Bill Trost discovered that snmpd did not properly limit GETBULK
requests. A remote attacker could specify a large number of
max-repetitions and cause a denial of service via resource
exhaustion.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Ubuntu | 7.10 | noarch | snmpd | <Β 5.3.1-6ubuntu2.1 | UNKNOWN |
| Ubuntu | 7.10 | noarch | libsnmp-dev | <Β 5.3.1-6ubuntu2.1 | UNKNOWN |
| Ubuntu | 7.10 | noarch | libsnmp-perl | <Β 5.3.1-6ubuntu2.1 | UNKNOWN |
| Ubuntu | 7.10 | noarch | libsnmp10 | <Β 5.3.1-6ubuntu2.1 | UNKNOWN |
| Ubuntu | 7.10 | noarch | snmp | <Β 5.3.1-6ubuntu2.1 | UNKNOWN |
| Ubuntu | 7.04 | noarch | snmpd | <Β 5.2.3-4ubuntu1.1 | UNKNOWN |
| Ubuntu | 7.04 | noarch | libsnmp-perl | <Β 5.2.3-4ubuntu1.1 | UNKNOWN |
| Ubuntu | 7.04 | noarch | libsnmp9 | <Β 5.2.3-4ubuntu1.1 | UNKNOWN |
| Ubuntu | 7.04 | noarch | libsnmp9-dev | <Β 5.2.3-4ubuntu1.1 | UNKNOWN |
| Ubuntu | 7.04 | noarch | snmp | <Β 5.2.3-4ubuntu1.1 | UNKNOWN |
References
Related
nessus
nessus
Mandrake Linux Security Advisory : net-snmp (MDKSA-2007:225)
2007-11-20 00:00:00
SuSE9 Security Update : net-snmp (YOU Patch Number 11999)
2012-04-23 00:00:00
SuSE 10 Security Update : net-snmp (ZYPP Patch Number 4755)
2007-12-13 00:00:00
openvas
openvas
SLES9: Security update for net-snmp
2009-10-10 00:00:00
Gentoo Security Advisory GLSA 200711-31 (net-snmp)
2008-09-24 00:00:00
Ubuntu Update for net-snmp vulnerability USN-564-1
2009-03-23 00:00:00
securityvulns
securityvulns
[ MDKSA-2007:225 ] - Updated net-snmp packages fix remote denial of service vulnerability
2007-11-19 00:00:00
net-snmp DoS
2007-11-19 00:00:00
prion
prion
Design/Logic Flaw
2007-11-06 21:46:00
freebsd
freebsd
net-snmp -- denial of service via GETBULK request
2007-11-06 00:00:00
checkpoint_security
checkpoint_security
Check Point response to NET-SNMP vulnerability CVE-2007-5846
2007-12-12 22:00:00
oraclelinux
oraclelinux
Moderate: net-snmp security update
2007-11-16 00:00:00
seebug
seebug
Net-SNMP GETBULKθΏη¨ζη»ζε‘ζΌζ΄
2007-11-09 00:00:00
debian
debian
redhat
redhat
(RHSA-2007:1045) Moderate: net-snmp security update
2007-11-15 00:00:00
ubuntucve
ubuntucve
CVE-2007-5846
2007-11-06 00:00:00
debiancve
debiancve
CVE-2007-5846
2007-11-06 21:46:00
osv
osv
net-snmp - denial of service
2008-02-06 00:00:00
fedora
fedora
[SECURITY] Fedora 7 Update: net-snmp-5.4-16.fc7
2007-11-20 17:53:55
[SECURITY] Fedora 7 Update: net-snmp-5.4-18.fc7
2008-06-11 04:39:52
ics
ics
Siemens SCALANCE X200 IRT
2023-02-16 12:00:00
gentoo
gentoo
Net-SNMP: Denial of service
2007-11-20 00:00:00
cvelist
cvelist
CVE-2007-5846
2007-11-06 21:00:00
f5
f5
K33151296 : SNMP vulnerability CVE-2007-5846
2017-07-21 00:00:00
centos
centos
net security update
2007-11-15 19:23:48
veracode
veracode
Denial Of Service (DoS)
2020-04-10 00:22:44
cve
cve
CVE-2007-5846
2007-11-06 21:46:00
nvd
nvd
CVE-2007-5846
2007-11-06 21:46:00
vmware
vmware
Moderate Updated Service Console packages pcre, net-snmp, and OpenPegasus
2008-04-15 00:00:00
Moderate Updated Service Console packages pcre, net-snmp, and OpenPegasus
2008-04-15 00:00:00
CVSS2
7.8
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
AI Score
6.3
Confidence
Low
EPSS
0.739
Percentile
98.2%
Related for USN-564-1