Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2014-2284

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2014-2284
Last Modified 13 Sep 2014 01:25:27
Published 24 Mar 2014 12:43:02
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2014-2284

Summary

The Linux implementation of the ICMP-MIB in Net-SNMP 5.5 before 5.5.2.1, 5.6.x before 5.6.2.1, and 5.7.x before 5.7.2.1 does not properly validate input, which allows remote attackers to cause a denial of service via unspecified vectors.

Vulnerable Systems

Application

  • Net-snmp 5.5

  • Net-snmp 5.5.0.1

  • Net-snmp 5.5.0.2

  • Net-snmp 5.5.1

  • Net-snmp 5.5.1.1

  • Net-snmp 5.5.2

  • Net-snmp 5.6

  • Net-snmp 5.6.1.1

  • Net-snmp 5.6.2

  • Net-snmp 5.7

  • Net-snmp 5.7.1

  • Net-snmp 5.7.2


References

MLIST - [net-snmp-announce] 20140225 Multiple Security-fix Net-SNMP Releases: 5.5.2.1, 5.6.2.1, and 5.7.2.1

SECUNIA - 57526

SUSE - openSUSE-SU-2014:0399

SUSE - openSUSE-SU-2014:0398

MLIST - [oss-security] 20140305 CVE request for two net-snmp remote DoS flaws

SECUNIA - 57583

REDHAT - RHSA-2014:0321

UBUNTU - USN-2166-1

SECUNIA - 57870

GENTOO - GLSA-201409-02

SECUNIA - 59974

SECUNIA - 57124


Last Updated: 27 May 2016 11:05:04