Executive Summary

Informations
Name MDVSA-2014:017 First vendor Publication 2014-01-22
Vendor Mandriva Last vendor Modification 2014-01-22
Severity (Vendor) N/A Revision N/A

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score NA
Base Score NA Environmental Score NA
impact SubScore NA Temporal Score NA
Exploitabality Sub Score NA
 
Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:M/Au:N/C:N/I:N/A:P)
Cvss Base Score 4.3 Attack Range Network
Cvss Impact Score 2.9 Attack Complexity Medium
Cvss Expoit Score 8.6 Authentication None Required
Calculate full CVSS 2.0 Vectors scores

Detail

Updated net-snmp packages fix security vulnerability:

Net-SNMP 5.7.1 and earlier, when AgentX is registering to handle a MIB and processing GETNEXT requests, allows remote attackers to cause a denial of service (crash or infinite loop, CPU consumption, and hang) by causing the AgentX subagent to timeout (CVE-2012-6151).

This update also fixes two other minor issues: IPADDRESS size in python-netsnmp on 64-bit systems and adding btrfs support to hrFSTable.

Original Source

Url : http://www.mandriva.com/security/advisories?name=MDVSA-2014:017

CWE : Common Weakness Enumeration

% Id Name
100 % CWE-399 Resource Management Errors

CPE : Common Platform Enumeration

TypeDescriptionCount
Application 39
Os 1
Os 4

Nessus® Vulnerability Scanner

Date Description
2015-10-29 Name : The remote host is missing a Mac OS X update that fixes multiple security vul...
File : macosx_10_11_1.nasl - Type : ACT_GATHER_INFO
2015-04-22 Name : The remote device is missing a vendor-supplied security patch.
File : f5_bigip_SOL16476.nasl - Type : ACT_GATHER_INFO
2015-01-19 Name : The remote Solaris system is missing a security patch for third-party software.
File : solaris11_net-snmp_20140915.nasl - Type : ACT_GATHER_INFO
2015-01-19 Name : The remote Solaris system is missing a security patch for third-party software.
File : solaris11_net-snmp_20141014.nasl - Type : ACT_GATHER_INFO
2014-09-02 Name : The remote Gentoo host is missing one or more security-related patches.
File : gentoo_GLSA-201409-02.nasl - Type : ACT_GATHER_INFO
2014-04-15 Name : The remote Ubuntu host is missing one or more security-related patches.
File : ubuntu_USN-2166-1.nasl - Type : ACT_GATHER_INFO
2014-03-28 Name : The remote Amazon Linux AMI host is missing a security update.
File : ala_ALAS-2014-316.nasl - Type : ACT_GATHER_INFO
2014-03-25 Name : The remote CentOS host is missing one or more security updates.
File : centos_RHSA-2014-0322.nasl - Type : ACT_GATHER_INFO
2014-03-25 Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2014-0322.nasl - Type : ACT_GATHER_INFO
2014-03-25 Name : The remote Red Hat host is missing one or more security updates.
File : redhat-RHSA-2014-0322.nasl - Type : ACT_GATHER_INFO
2014-03-25 Name : The remote Scientific Linux host is missing one or more security updates.
File : sl_20140324_net_snmp_on_SL5_x.nasl - Type : ACT_GATHER_INFO
2014-01-23 Name : The remote Mandriva Linux host is missing one or more security updates.
File : mandriva_MDVSA-2014-017.nasl - Type : ACT_GATHER_INFO
2014-01-08 Name : The remote Fedora host is missing a security update.
File : fedora_2013-22809.nasl - Type : ACT_GATHER_INFO
2014-01-08 Name : The remote Fedora host is missing a security update.
File : fedora_2013-22919.nasl - Type : ACT_GATHER_INFO
2014-01-08 Name : The remote Fedora host is missing a security update.
File : fedora_2013-22949.nasl - Type : ACT_GATHER_INFO

Alert History

If you want to see full details history, please login or register.
0
1
Date Informations
2014-02-17 11:44:17
  • Multiple Updates
2014-01-22 17:18:29
  • First insertion