CVE-2002-1170

Name of the Vulnerable Software and Affected Versions Net-SNMP versions 5.0.1 through 5.0.5 net-snmp-5.0.6 net-snmp-utils-5.0.6 net-snmp-devel-5.0.6

Description The issue allows remote attackers to cause a denial of service, leading to disruption of protected information availability. This can be exploited remotely. The handle var requests function in snmp agent.c for the SNMP daemon is vulnerable to a NULL dereference, causing a crash.

Recommendations For Net-SNMP versions 5.0.1 through 5.0.5, consider updating to a version outside of this range to resolve the issue. For net-snmp-5.0.6, net-snmp-utils-5.0.6, and net-snmp-devel-5.0.6, at the moment, there is no information about a newer version that contains a fix for this vulnerability. As a temporary workaround, consider restricting access to the SNMP daemon to minimize the risk of exploitation.