Denial Of Service (DoS)

2019-01-1508:52:11

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

0.132 Low

EPSS

Percentile

95.6%

JSON

net-snmp is vulnerable to denial of service. This is due to a lack of validation for active requests queued when the subagent disconnects from the snmpd, which leads to an infinite loop or crash occurs when AgentX registers to handle an MIB and processes GETNEXT requests.

CPENameOperatorVersion
net-snmpeq5.3.1__14.el5
net-snmpeq5.3.1__19.el5
net-snmpeq5.3.2.2__7.el5_4.2
net-snmpeq5.3.2.2__5.el5
net-snmpeq5.3.1__24.el5_2.2
net-snmpeq5.3.2.2__14.el5_7.1
net-snmpeq5.3.1__19.el5_1.1
net-snmpeq5.3.2.2__9.el5_5.1
net-snmpeq5.5__41.el6
net-snmpeq5.3.2.2__5.el5_3.1

Name	Operator	Version
net-snmp	eq	5.3.1__14.el5
net-snmp	eq	5.3.1__19.el5
net-snmp	eq	5.3.2.2__7.el5_4.2
net-snmp	eq	5.3.2.2__5.el5
net-snmp	eq	5.3.1__24.el5_2.2
net-snmp	eq	5.3.2.2__14.el5_7.1
net-snmp	eq	5.3.1__19.el5_1.1
net-snmp	eq	5.3.2.2__9.el5_5.1
net-snmp	eq	5.5__41.el6
net-snmp	eq	5.3.2.2__5.el5_3.1