Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-5846

Overview

Vulnerability Score 7.8 7.8
CVE Id CVE-2007-5846
Last Modified 30 Oct 2012 10:46:11
Published 06 Nov 2007 04:46:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2007-5846

Summary

The SNMP agent (snmp_agent.c) in net-snmp before 5.4.1 allows remote attackers to cause a denial of service (CPU and memory consumption) via a GETBULK request with a large max-repeaters value.

Vulnerable Systems

Application

  • Net-snmp 5.4.1


References

BID - 26378

DEBIAN - DSA-1483

MLIST - [Security-announce] 20080415 VMSA-2008-0007 Moderate Updated Service Console packages pcre, net-snmp, and OpenPegasus

FEDORA - FEDORA-2007-3019

VUPEN - ADV-2008-1234

VUPEN - ADV-2007-3802

UBUNTU - USN-564-1

SECTRACK - 1018918

BUGTRAQ - 20080416 VMSA-2008-0007 Moderate Updated Service Console packages pcre, net-snmp, and OpenPegasus

REDHAT - RHSA-2007:1045

SUSE - SUSE-SR:2007:025

MANDRIVA - MDKSA-2007:225

CONFIRM - http://sourceforge.net/tracker/index.php?func=detail&aid=1712988&group_id=12694&atid=112694

CONFIRM - http://sourceforge.net/project/shownotes.php?release_id=528095&group_id=12694

GENTOO - GLSA-200711-31

SECUNIA - 29785

SECUNIA - 28825

SECUNIA - 28413

SECUNIA - 27965

SECUNIA - 27740

SECUNIA - 27733

SECUNIA - 27689

SECUNIA - 27685

SECUNIA - 27558

MISC - http://net-snmp.svn.sourceforge.net/viewvc/net-snmp/tags/Ext-5-4-1/net-snmp/agent/snmp_agent.c?view=log

CONFIRM - http://bugs.gentoo.org/show_bug.cgi?id=198346

OSVDB - 38904

Related Patches

Novell SUSE 2007:4755 net-snmp security update for SLE 10 SP1 i586


Last Updated: 27 May 2016 10:55:04