Multiple Vendor Malformed SNMP Message-Handling DoS

This script is Copyright (C) 2002-2014 Tenable Network Security, Inc.


Synopsis :

The remote SNMP service is vulnerable to a denial of service attack.

Description :

It was possible to disable the remote SNMP daemon by sending a
malformed packet advertising bogus length fields.

An attacker may use this flaw to prevent you from using SNMP to
administer your network (or use other flaws to execute arbitrary code
with the privileges of the SNMP daemon).

Solution :

Contact the vendor for a patch.

Risk factor :

Medium / CVSS Base Score : 5.0
(CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P)

Family: SNMP

Nessus Plugin ID: 10857 ()

Bugtraq ID:

CVE ID: CVE-2002-0013