BeyondTrust

Security in Context: The BeyondTrust Blog

Welcome to the Zeroday Tracker: Your Vulnerability Watchlist

Get critical updates on the latest zeroday threats, including impact, mitigation and protection information - only from BeyondTrust.

Net-SNMP Denial of Service

Disclosed April 26, 2012    Fully Patched

Vulnerability Description:

Net-SNMP has a vulnerability due to an array-indexing error when handling entry lookup within a MIB subtree. This vulnerability can cause a heap-based buffer overflow which may allow an attacker to execute arbitrary code within the context of the currently logged on user. 

Vendors:

Net-SNMP

Vulnerable Software/Devices:

  • Net-SNMP 5.7.1 and earlier

Vulnerability Severity:

High

Exploit Availability:

N/A

Exploit Impact:

Denial of Service
Denial of Service This vulnerability could allow an attacker to cause a denial of service condition against a target, rendering the software or the entire machine inoperable.

BeyondTrust Prevention and Detection:

BeyondTrust's Retina® Network Security Scanner scans devices to detect for this vulnerability.

  • 16287 - Net-SNMP Denial of Service
  • 16288 - Net-SNMP Denial of Service - RHEL5

Mitigation:

No mitigations available.

Links:

CVE(s):

None

Leave a Reply