(Sun Issues Fix) Net-SNMP Lets Remote Users Deny Service
|
|
SecurityTracker Alert ID: 1017274 |
|
SecurityTracker URL: http://securitytracker.com/id/1017274
|
|
CVE Reference:
CVE-2005-2177
(Links to External Site)
|
Updated: May 31 2007
|
Original Entry Date: Nov 23 2006
|
Impact:
Denial of service via network
|
Fix Available: Yes Vendor Confirmed: Yes
|
|
Description:
A vulnerability was reported in Net-SNMP. A remote user can cause denial of service conditions.
A remote user can send specially crafted SNMP data via TCP to cause the target snmpd daemon to crash. No further details were provided.
|
Impact:
A remote user can cause the SNMP daemon crash.
|
Solution:
Sun has issued the following fixes.
SPARC Platform
* Solaris 10 with patch 120272-08 or later
x86 Platform
* Solaris 10 with patch 120273-09 or later
Solaris 8 and Solaris 9 are not affected because they do not ship with Net-SNMP.
The Sun advisory is available at:
http://sunsolve.sun.com/search/document.do?assetkey=1-26-102725-1
|
Vendor URL: net-snmp.sourceforge.net/ (Links to External Site)
|
Cause:
Not specified
|
Underlying OS:
UNIX (Solaris - SunOS)
|
|
Message History:
This archive entry is a follow-up to the message listed below.
|
Source Message Contents
|
Date: Wed, 22 Nov 2006 23:51:02 -0500
Subject: A Malformed Packet Received by snmpd(1) via TCP may Cause a Denial of Service (DoS)
|
http://sunsolve.sun.com/search/document.do?assetkey=1-26-102725-1
CVE-2006-5941
|
|
