CVE-2008-1402

Name of the Vulnerable Software and Affected Versions MG-SOFT Net Inspector versions 6.5.0.828 and earlier

Description The issue allows remote attackers to cause a denial of service. This can be achieved in two ways: by sending a UDP packet to the SNMP Trap Service, which can cause an exception and crash, or by sending a malformed request to the Net Inspector Server, which can cause the device to freeze or consume excessive memory.

Recommendations For MG-SOFT Net Inspector versions 6.5.0.828 and earlier, consider restricting access to the SNMP Trap Service and the Net Inspector Server to minimize the risk of exploitation. As a temporary workaround, consider disabling the MgWTrap3.exe service and the niengine server until a patch is available.