Total vulnerabilities in the database
snmplib/mib.c in net-snmp 5.7.0 and earlier, when the -OQ option is used, allows remote attackers to cause a denial of service (snmptrapd crash) via a crafted SNMP trap message, which triggers a conversion to the variable type designated in the MIB file, as demonstrated by a NULL type in an ifMtu trap message.
| Software | From | Fixed in |
|---|---|---|
| apple / mac_os_x | 10.11.0 | 10.11.0.x |
| canonical / ubuntu_linux | 12.04 | 12.04.x |
| canonical / ubuntu_linux | 14.04 | 14.04.x |
| canonical / ubuntu_linux | 15.04 | 15.04.x |
| net-snmp / net-snmp | 5.3 | 5.3.x |
| net-snmp / net-snmp | 5.0.6 | 5.0.6.x |
| net-snmp / net-snmp | 5.1 | 5.1.x |
| net-snmp / net-snmp | 5.0.9 | 5.0.9.x |
| net-snmp / net-snmp | 5.0 | 5.0.x |
| net-snmp / net-snmp | 5.3.0.1 | 5.3.0.1.x |
| net-snmp / net-snmp | 5.5 | 5.5.x |
| net-snmp / net-snmp | 5.0.7 | 5.0.7.x |
| net-snmp / net-snmp | 5.0.2 | 5.0.2.x |
| net-snmp / net-snmp | 5.2 | 5.2.x |
| net-snmp / net-snmp | 5.0.1 | 5.0.1.x |
| net-snmp / net-snmp | 5.4 | 5.4.x |
| net-snmp / net-snmp | 5.6 | 5.6.x |
| net-snmp / net-snmp | 5.0.3 | 5.0.3.x |
| net-snmp / net-snmp | 5.0.4 | 5.0.4.x |
| net-snmp / net-snmp | - | 5.7.0.x |
| net-snmp / net-snmp | 5.1.2 | 5.1.2.x |
| net-snmp / net-snmp | 5.0.5 | 5.0.5.x |
| net-snmp / net-snmp | 5.0.8 | 5.0.8.x |