CVE-2008-6123

CVSS v2.0

5.0

Medium

Vector

AV:N/AC:L/Au:N/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions net-snmp versions 5.0.9 through 5.4.2.1

Description The issue is related to the netsnmp udp fmtaddr function in snmplib/snmpUDPDomain.c, which does not properly parse hosts.allow rules when using TCP wrappers for client authorization. This allows remote attackers to bypass intended access restrictions and execute SNMP queries, due to "source/destination IP address confusion."

Recommendations For net-snmp versions 5.0.9 through 5.4.2.1, consider disabling the use of TCP wrappers for client authorization until a patch is available, or apply configuration changes to hosts.allow rules to minimize the risk of exploitation.

Exploit

Fix

Incorrect Authorization

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-863

Related Identifiers

CVE-2008-6123

RHSA-2009:0295

Affected Products

Net-Snmp

CVE-2008-6123

Weakness Enumeration

Related Identifiers

Affected Products

References · 21