MDVSA-2008:118 -- Mandriva net-snmpID: oval:org.secpod.oval:def:301381 | Date: (C)2012-01-07 (M)2023-11-09 |
Class: PATCH | Family: unix |
A vulnerability was found in how Net-SNMP checked an SNMPv3 packet"s Keyed-Hash Message Authentication Code . An attacker could exploit this flaw to spoof an authenticated SNMPv3 packet . A buffer overflow was found in the perl bindings for Net-SNMP that could be exploited if an attacker could convince an application using the Net-SNMP perl modules to connect to a malicious SNMP agent . The updated packages have been patched to prevent these issues.
Platform: |
Mandriva Linux 2007.1 |
Mandriva Linux 2008.1 |
Mandriva Linux 2008.0 |