[Forgot Password]
Login  Register Subscribe

23631

 
 

115038

 
 

96174

 
 

909

 
 

78077

 
 

109

Paid content will be excluded from the download.


Download | Alert*
OVAL

MDVSA-2009:056 -- Mandriva net-snmp

ID: oval:org.secpod.oval:def:300504Date: (C)2012-01-07   (M)2017-10-04
Class: PATCHFamily: unix




A vulnerability has been identified and corrected in net-snmp: The netsnmp_udp_fmtaddr function in net-snmp 5.0.9 through 5.4.2, when using TCP wrappers for client authorization, does not properly parse hosts.allow rules, which allows remote attackers to bypass intended access restrictions and execute SNMP queries, related to source/destination IP address confusion. The updated packages have been patched to prevent this.

Platform:
Mandriva Linux 2009.0
Product:
net-snmp
Reference:
MDVSA-2009:056
CVE-2008-6123
CVE    1
CVE-2008-6123
CPE    1
cpe:/o:mandriva:linux:2009.0

© 2013 SecPod Technologies