CentOS Update For Ucd-snmp CESA-2008:0528-01 Centos2 I386 Network Vulnerability

Solution

Please Install the Updated Packages.

Insight

The Simple Network Management Protocol (SNMP) is a protocol used for network management. A flaw was found in the way ucd-snmp checked an SNMPv3 packet's Keyed-Hash Message Authentication Code (HMAC). An attacker could use this flaw to spoof an authenticated SNMPv3 packet. (CVE-2008-0960) All users of ucd-snmp should upgrade to these updated packages, which contain a backported patch to resolve this issue.

Affected

ucd-snmp on CentOS 2

References

http://lists.centos.org/pipermail/centos-announce/2008-June/014972.html

Updated on 2015-03-25

Severity

Classification

CVE CVE-2008-0960
CVSS Base Score: 10.0
AV:N/AC:L/Au:N/C:C/I:C/A:C

Related Vulnerabilities

CentOS Security Advisory CESA-2009:0275 (imap)
CentOS Security Advisory CESA-2009:1159 (libtiff)
CentOS Security Advisory CESA-2009:0408 (krb5)
CentOS Security Advisory CESA-2009:1107 (apr-util)
CentOS Security Advisory CESA-2009:0480 (poppler)

CentOS Update for ucd-snmp CESA-2008:0528-01 centos2 i386

Take action and discover your vulnerabilities