[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244411

 
 

909

 
 

193363

 
 

277

Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2008-0960Date: (C)2008-06-10   (M)2023-12-22


SNMPv3 HMAC verification in (1) Net-SNMP 5.2.x before 5.2.4.1, 5.3.x before 5.3.2.1, and 5.4.x before 5.4.1.1; (2) UCD-SNMP; (3) eCos; (4) Juniper Session and Resource Control (SRC) C-series 1.0.0 through 2.0.0; (5) NetApp (aka Network Appliance) Data ONTAP 7.3RC1 and 7.3RC2; (6) SNMP Research before 16.2; (7) multiple Cisco IOS, CatOS, ACE, and Nexus products; (8) Ingate Firewall 3.1.0 and later and SIParator 3.1.0 and later; (9) HP OpenView SNMP Emanate Master Agent 15.x; and possibly other products relies on the client to specify the HMAC length, which makes it easier for remote attackers to bypass SNMP authentication via a length value of 1, which only checks the first byte.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 10.0
Exploit Score: 10.0
Impact Score: 10.0
 
CVSS V2 Metrics:
Access Vector: NETWORK
Access Complexity: LOW
Authentication: NONE
Confidentiality: COMPLETE
Integrity: COMPLETE
Availability: COMPLETE
  
Reference:
SECTRACK-1020218
http://www.securityfocus.com/archive/1/493218/100/0/threaded
http://www.cisco.com/warp/public/707/cisco-sa-20080610-snmpv3.shtml
http://www.securityfocus.com/archive/1/497962/100/0/threaded
SUNALERT-238865
BID-29623
SECUNIA-30574
SECUNIA-30596
SECUNIA-30612
SECUNIA-30615
SECUNIA-30626
SECUNIA-30647
SECUNIA-30648
SECUNIA-30665
SECUNIA-30802
SECUNIA-31334
SECUNIA-31351
SECUNIA-31467
SECUNIA-31568
SECUNIA-32664
SECUNIA-33003
SECUNIA-35463
SREASON-3933
EXPLOIT-DB-5790
ADV-2008-1787
ADV-2008-1788
ADV-2008-1797
ADV-2008-1800
ADV-2008-1801
ADV-2008-1836
ADV-2008-1981
ADV-2008-2361
ADV-2008-2971
ADV-2009-1612
APPLE-SA-2008-06-30
DSA-1663
FEDORA-2008-5215
FEDORA-2008-5218
FEDORA-2008-5224
GLSA-200808-02
MDVSA-2008:118
RHSA-2008:0528
RHSA-2008:0529
SSRT080082
SUSE-SA:2008:039
TA08-162A
USN-685-1
VU#878044
http://www.openwall.com/lists/oss-security/2008/06/09/1
http://lists.ingate.com/pipermail/productinfo/2008/000021.html
http://sourceforge.net/forum/forum.php?forum_id=833770
http://sourceforge.net/tracker/index.php?func=detail&aid=1989089&group_id=12694&atid=456380
http://support.apple.com/kb/HT2163
http://support.avaya.com/elmodocs2/security/ASA-2008-282.htm
http://www.kb.cert.org/vuls/id/CTAR-7FBS8Q
http://www.kb.cert.org/vuls/id/MIMG-7ETS5Z
http://www.kb.cert.org/vuls/id/MIMG-7ETS87
http://www.ocert.org/advisories/ocert-2008-006.html
http://www.vmware.com/security/advisories/VMSA-2008-0013.html
http://www.vmware.com/security/advisories/VMSA-2008-0017.html
https://bugzilla.redhat.com/show_bug.cgi?id=447974
oval:org.mitre.oval:def:10820
oval:org.mitre.oval:def:5785
oval:org.mitre.oval:def:6414

CPE    15
cpe:/o:cisco:ios:10.0
cpe:/o:cisco:ios_xr:3.6
cpe:/o:cisco:ios_xr:3.7
cpe:/o:cisco:ios_xr:3.4
...
CWE    1
CWE-287
OVAL    2
oval:org.mitre.oval:def:7025
oval:org.secpod.oval:def:301381

© SecPod Technologies