MDVSA-2008:225 -- Mandriva net-snmp
|ID: oval:org.secpod.oval:def:301402||Date: (C)2012-01-07 (M)2017-10-04|
|Class: PATCH||Family: unix|
A denial of service vulnerability was discovered in how Net-SNMP processed GETBULK requests. A remote attacker with read access to the SNMP server could issue a specially-crafted request which would cause snmpd to crash . Please note that for this to be successfully exploited, an attacker must have read access to the SNMP server. By default, the public community name grants read-only access, however it is recommended that the default community name be changed in production. The updated packages have been patched to correct this issue.
|Mandriva Linux 2009.0|
|Mandriva Linux 2008.1|
|Mandriva Linux 2008.0|