Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2002-0013

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2002-0013
Last Modified 10 Sep 2008 03:11:03
Published 13 Feb 2002 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2002-0013

Summary

Vulnerabilities in the SNMPv1 request handling of a large number of SNMP implementations allow remote attackers to cause a denial of service or gain privileges via (1) GetRequest, (2) GetNextRequest, and (3) SetRequest messages, as demonstrated by the PROTOS c06-SNMPv1 test suite. NOTE: It is highly likely that this candidate will be SPLIT into multiple candidates, one or more for each vendor. This and other SNMP-related candidates will be updated when more accurate information is available.

Vulnerable Systems

Application

  • Snmp


References

CERT-VN - VU#854306

CERT - CA-2002-03

MS - MS02-006

SUNALERT - 57404

SGI - 20020201-01-A

REDHAT - RHSA-2001:163

ISS - 20020212 PROTOS Remote SNMP Attack Tool

MISC - http://www.ee.oulu.fi/research/ouspg/protos/testing/c06/snmpv1/index.html


Last Updated: 27 May 2016 10:36:44