GLSA-200711-31 : Net-SNMP: Denial of Service
High Nessus Plugin ID 28320
SynopsisThe remote Gentoo host is missing one or more security-related patches.
DescriptionThe remote host is affected by the vulnerability described in GLSA-200711-31 (Net-SNMP: Denial of Service)
The SNMP agent (snmpd) does not properly handle GETBULK requests with an overly large 'max-repetitions' field.
A remote unauthenticated attacker could send a specially crafted SNMP request to the vulnerable application, possibly resulting in a high CPU and memory consumption.
There is no known workaround at this time.
SolutionAll Net-SNMP users should upgrade to the latest version:
# emerge --sync # emerge --ask --oneshot --verbose '>=net-analyzer/net-snmp-5.4.1-r1'