|
Family: Ubuntu Local Security Checks --> Category: infos
USN190-2 : ucd-snmp vulnerability Vulnerability Scan
Vulnerability Scan Summary ucd-snmp vulnerability
Detailed Explanation for this Vulnerability Test
Synopsis :
These remote packages are missing security patches :
- libsnmp4.2
- libsnmp4.2-dev
Description :
USN-190-1 fixed a vulnerability in the net-snmp library. It was
discovered that the same problem also affects the ucs-snmp
implementation (which is used by the Cyrus email server).
Original advisory:
A remote Denial of Service has been discovered in the SMNP (Simple
Network Management Protocol) library. If a SNMP agent uses TCP sockets
for communication, a malicious SNMP server could exploit this to crash
the agent. Please note that by default SNMP uses UDP sockets.
Solution :
Upgrade to :
- libsnmp4.2-4.2.5-5ubuntu0.1 (Ubuntu 5.10)
- libsnmp4.2-dev-4.2.5-5ubuntu0.1 (Ubuntu 5.10)
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|