Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-0960

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2008-0960
Last Modified 07 Mar 2011 12:00:00
Published 10 Jun 2008 02:32:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-0960

Summary

SNMPv3 HMAC verification in (1) Net-SNMP 5.2.x before 5.2.4.1, 5.3.x before 5.3.2.1, and 5.4.x before 5.4.1.1; (2) UCD-SNMP; (3) eCos; (4) Juniper Session and Resource Control (SRC) C-series 1.0.0 through 2.0.0; (5) NetApp (aka Network Appliance) Data ONTAP 7.3RC1 and 7.3RC2; (6) SNMP Research before 16.2; (7) multiple Cisco IOS, CatOS, ACE, and Nexus products; (8) Ingate Firewall 3.1.0 and later and SIParator 3.1.0 and later; (9) HP OpenView SNMP Emanate Master Agent 15.x; and possibly other products relies on the client to specify the HMAC length, which makes it easier for remote attackers to bypass SNMP authentication via a length value of 1, which only checks the first byte.

Vulnerable Systems

Operating System

  • Cisco Catos 7.1.1

  • Cisco Catos 7.3.1

  • Cisco Catos 7.4.1

  • Cisco Catos 8.3

  • Cisco Ios 10.0

  • Cisco Ios 11.0

  • Cisco Ios 11.1

  • Cisco Ios 11.3

  • Cisco Ios 12.0

  • Cisco Ios 12.1

  • Cisco Ios 12.2

  • Cisco Ios 12.3

  • Cisco Ios 12.4

  • Cisco Ios Xr 2.0

  • Cisco Ios Xr 3.0

  • Cisco Ios Xr 3.2

  • Cisco Ios Xr 3.3

  • Cisco Ios Xr 3.4

  • Cisco Ios Xr 3.5

  • Cisco Ios Xr 3.6

  • Cisco Ios Xr 3.7

  • Cisco Nx Os 4.0

  • Cisco Nx Os 4.0.1

  • Cisco Nx Os 4.0.2

  • Ecos Sourceware Ecos 1.1

  • Ecos Sourceware Ecos 1.2.1

  • Ecos Sourceware Ecos 1.3.1

  • Ecos Sourceware Ecos 2.0

  • Net-snmp Net Snmp 5.0

  • Net-snmp Net Snmp 5.0.1

  • Net-snmp Net Snmp 5.0.2

  • Net-snmp Net Snmp 5.0.3

  • Net-snmp Net Snmp 5.0.4

  • Net-snmp Net Snmp 5.0.5

  • Net-snmp Net Snmp 5.0.6

  • Net-snmp Net Snmp 5.0.7

  • Net-snmp Net Snmp 5.0.8

  • Net-snmp Net Snmp 5.0.9

  • Net-snmp Net Snmp 5.1

  • Net-snmp Net Snmp 5.1.1

  • Net-snmp Net Snmp 5.1.2

  • Net-snmp Net Snmp 5.2

  • Net-snmp Net Snmp 5.3

  • Net-snmp Net Snmp 5.3.0.1

  • Net-snmp Net Snmp 5.4

  • Sun Solaris 10.0

Application

  • Hp Openview Snmp Emanate Master Agent 15.0

  • Juniper Session And Resource Control 1.0

  • Juniper Session And Resource Control 2.0

  • Juniper Src Pe 1.0

  • Juniper Src Pe 2.0


References

CERT - TA08-162A

CONFIRM - http://www.kb.cert.org/vuls/id/MIMG-7ETS87

CONFIRM - http://www.kb.cert.org/vuls/id/MIMG-7ETS5Z

CONFIRM - http://www.kb.cert.org/vuls/id/CTAR-7FBS8Q

CERT-VN - VU#878044

BID - 29623

DEBIAN - DSA-1663

FEDORA - FEDORA-2008-5218

FEDORA - FEDORA-2008-5224

FEDORA - FEDORA-2008-5215

CONFIRM - https://bugzilla.redhat.com/show_bug.cgi?id=447974

VUPEN - ADV-2009-1612

VUPEN - ADV-2008-2971

VUPEN - ADV-2008-2361

VUPEN - ADV-2008-1981

VUPEN - ADV-2008-1836

VUPEN - ADV-2008-1801

VUPEN - ADV-2008-1800

VUPEN - ADV-2008-1797

VUPEN - ADV-2008-1788

VUPEN - ADV-2008-1787

MISC - http://www.vmware.com/security/advisories/VMSA-2008-0017.html

CONFIRM - http://www.vmware.com/security/advisories/VMSA-2008-0013.html

UBUNTU - USN-685-1

SECTRACK - 1020218

BUGTRAQ - 20081031 VMSA-2008-0017 Updated ESX packages for libxml2, ucd-snmp, libtiff

BUGTRAQ - 20080609 [oCERT-2008-006] multiple SNMP implementations HMAC authentication spoofing

REDHAT - RHSA-2008:0529

MLIST - [oss-security] 20080609 [oCERT-2008-006] multiple SNMP implementations HMAC authentication spoofing

MISC - http://www.ocert.org/advisories/ocert-2008-006.html

MILW0RM - 5790

MANDRIVA - MDVSA-2008:118

CISCO - 20080610 SNMP Version 3 Authentication Vulnerabilities

CONFIRM - http://support.avaya.com/elmodocs2/security/ASA-2008-282.htm

CONFIRM - http://support.apple.com/kb/HT2163

SUNALERT - 238865

CONFIRM - http://sourceforge.net/tracker/index.php?func=detail&aid=1989089&group_id=12694&atid=456380

CONFIRM - http://sourceforge.net/forum/forum.php?forum_id=833770

SREASON - 3933

GENTOO - GLSA-200808-02

SECUNIA - 35463

SECUNIA - 33003

SECUNIA - 32664

SECUNIA - 31568

SECUNIA - 31467

SECUNIA - 31351

SECUNIA - 31334

SECUNIA - 30802

SECUNIA - 30665

SECUNIA - 30648

SECUNIA - 30647

SECUNIA - 30626

SECUNIA - 30615

SECUNIA - 30612

SECUNIA - 30596

SECUNIA - 30574

REDHAT - RHSA-2008:0528

HP - SSRT080082

SUSE - SUSE-SA:2008:039

MLIST - [productinfo] 20080611 Ingate Firewall and SIParator affected by SNMPv3 vulnerability

APPLE - APPLE-SA-2008-06-30

HP - HPSBMA02439

Related Patches

Apple 2008-06-30 Security Update 2008-004 (PPC)

Apple 2008-06-30 Security Update 2008-004 Server (PPC)

Apple 2008-06-30 Security Update 2008-004 (Intel)

Apple 2008-06-30 Mac OS X Server 10.5.4 Combo Update

Apple 2008-06-30 Mac OS X 10.5.4 Update

Apple 2008-06-30 Security Update 2008-004 Server (Intel)

Apple 2008-06-30 Mac OS X Server 10.5.4 Update

Apple 2008-06-30 Mac OS X 10.5.4 Combo Update


Last Updated: 27 May 2016 10:57:50