CVE-2008-4309

NONECVSS 0.0

0.0

Integer overflow in the netsnmp_create_subtree_cache function in agent/snmp_agent.c in net-snmp 5.4 before 5.4.2.1, 5.3 before 5.3.2.3, and 5.2 before 5.2.5.1 allows remote attackers to cause a denial of service (crash) via a crafted SNMP GETBULK request, which triggers a heap-based buffer overflow, related to the number of responses or repeats.

🔗 References (84)

secalert@redhathttp://lists.apple.com/archives/security-announce/2009/May/msg00002.html
secalert@redhathttp://lists.apple.com/archives/security-announce/2010//Dec/msg00001.html
secalert@redhathttp://lists.opensuse.org/opensuse-security-announce/2009-02/msg00000.html
secalert@redhathttp://marc.info/?l=bugtraq&m=125017764422557&w=2
secalert@redhathttp://net-snmp.svn.sourceforge.net/viewvc/net-snmp/tags/Ext-5-2-5-1/net-snmp/agent/snmp_agent.c?r1=17271&r2=17272&pathrev=17272
secalert@redhathttp://secunia.com/advisories/32539
secalert@redhathttp://secunia.com/advisories/32560
secalert@redhathttp://secunia.com/advisories/32664
secalert@redhathttp://secunia.com/advisories/32711
secalert@redhathttp://secunia.com/advisories/33003
secalert@redhathttp://secunia.com/advisories/33095
secalert@redhathttp://secunia.com/advisories/33631
secalert@redhathttp://secunia.com/advisories/33746
secalert@redhathttp://secunia.com/advisories/33821
secalert@redhathttp://secunia.com/advisories/35074

Is Your Infrastructure Affected by CVE-2008-4309?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2008-4309

📅 Published

🔄 Last Modified

🔗 References (84)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2008-4309?