CVE-2007-5846 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2007-5846
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2007-5846

Description: The SNMP agent (snmp_agent.c) in net-snmp before 5.4.1 allows remote attackers to cause a denial of service (CPU and memory consumption) via a GETBULK request with a large max-repeaters value.

CVE Status: Candidate

References: UBUNTU http://www.ubuntu.com/usn/usn-564-1 SUSE http://www.novell.com/linux/security/advisories/2007_25_sr.html ST 1018918 SAID Secunia Advisory: SA27733 Secunia Advisory: SA27685 Secunia Advisory: SA27558 Secunia Advisory: SA27689 Secunia Advisory: SA27740 Secunia Advisory: SA27965 Secunia Advisory: SA28413 Secunia Advisory: SA28825 Secunia Advisory: SA29785 REDHAT http://www.redhat.com/support/errata/RHSA-2007-1045.html MLIST http://lists.vmware.com/pipermail/security-announce/2008/000014.html MISC http://net-snmp.svn.sourceforge.net/viewvc/net-snmp/tags/Ext-5-4-1/net-snmp/agent/snmp_agent.c?view=log MANDRIVA http://www.mandriva.com/security/advisories?name=MDKSA-2007:225 GENTOO http://security.gentoo.org/glsa/glsa-200711-31.xml FEDORA DEBIAN http://www.debian.org/security/2008/dsa-1483 CONFIRM http://bugs.gentoo.org/show_bug.cgi?id=198346 http://sourceforge.net/project/shownotes.php?release_id=528095&group_id=12694 http://sourceforge.net/tracker/index.php?func=detail&aid=1712988&group_id=12694&atid=112694 BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/490917/100/0/threaded BID 26378

Return to the previous page.