SNMP GETBULK Large max-repetitions Remote DoS

This script is Copyright (C) 2007-2016 Tenable Network Security, Inc.

Synopsis :

The remote SNMP daemon is susceptible to a denial of service attack.

Description :

It is possible to disable the remote SNMP daemon by sending a GETBULK
request with a large value for 'max-repetitions'. A remote attacker
may be able to leverage this issue to cause the daemon to consume
excessive memory and CPU on the affected system while it tries
unsuccessfully to process the request, thereby denying service to
legitimate users.

See also :

Solution :

Disable the SNMP service on the remote host if you do not use it.
Otherwise, upgrade to version 5.4.1 or later if using Net-SNMP.

Risk factor :

High / CVSS Base Score : 7.8
CVSS Temporal Score : 6.8
Public Exploit Available : true

Family: SNMP

Nessus Plugin ID: 27841 ()

Bugtraq ID: 26378

CVE ID: CVE-2007-5846

Ready to Scan Unlimited IPs & Run Compliance Checks?

Upgrade to Nessus Professional today!

Buy Now

Combine the Power of Nessus with the Ease of Cloud

Start your free Nessus Cloud trial now!

Begin Free Trial