CVE-2012-2141

Name of the Vulnerable Software and Affected Versions Net-SNMP version 5.7.1

Description The issue is related to an array index error in the handle nsExtendOutput2Table function. This error can be triggered by remote authenticated users through an SNMP GET request for a non-existent entry in the extension table, leading to a denial of service due to an out-of-bounds read and subsequent snmpd crash.

Recommendations For Net-SNMP version 5.7.1, consider restricting access to the handle nsExtendOutput2Table function until a patch is available. As a temporary workaround, avoid using the SNMP GET request for entries not in the extension table to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.