FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

CVE-2005-2177

This CVE name corresponds to:

Entered Topic
2005-07-05 net-snmp -- remote DoS vulnerability

The following information is adapted from the Common Vulnerabilities and Exposures (CVE) project. CVE and the CVE logo are trademarks of The MITRE Corporation. CVE content is Copyright 2005, The MITRE Corporation.

CVE-2005-2177 at cve.mitre.org

Details

Type Candidate
Name CVE-2005-2177
Phase Assigned(20050710)

Description

Net-SNMP 5.0.x before 5.0.10.2, 5.2.x before 5.2.1.2, and 5.1.3, when net-snmp is using stream sockets such as TCP, allows remote attackers to cause a denial of service (daemon hang and CPU consumption) via a TCP packet of length 1, which triggers an infinite loop.

References

Source Reference
BUGTRAQ 20061113 VMSA-2006-0006 - VMware ESX Server 2.5.3 Upgrade Patch 4
BUGTRAQ 20061113 VMSA-2006-0005 - VMware ESX Server 2.5.4 Upgrade Patch 1
BUGTRAQ 20061113 VMSA-2006-0007 - VMware ESX Server 2.1.3 Upgrade Patch 2
BUGTRAQ 20061113 VMSA-2006-0008 - VMware ESX Server 2.0.2 Upgrade Patch 2
MISC http://www.net-snmp.org/about/ChangeLog.html
MLIST [net-snmp-announce] 20050701 Multiple new Net-SNMP releases to fix a security related bug
CONFIRM http://support.avaya.com/elmodocs2/security/ASA-2005-225.pdf
CONFIRM http://www.vmware.com/download/esx/esx-202-200610-patch.html
CONFIRM http://www.vmware.com/download/esx/esx-213-200610-patch.html
CONFIRM http://www.vmware.com/download/esx/esx-254-200610-patch.html
DEBIAN DSA-873
MANDRIVA MDKSA-2006:025
REDHAT RHSA-2005:373
REDHAT RHSA-2005:395
REDHAT RHSA-2005:720
SUNALERT 102725
SUSE SUSE-SR:2005:024
SUSE SUSE-SR:2007:012
SUSE SUSE-SR:2007:013
TRUSTIX 2005-0034
UBUNTU USN-190-1
BID 14168
BID 21256
OVAL oval:org.mitre.oval:def:9986
VUPEN ADV-2006-4502
VUPEN ADV-2006-4677
VUPEN ADV-2007-1883
SECTRACK 1017273
SECUNIA 15930
SECUNIA 18635
SECUNIA 17217
SECUNIA 17343
SECUNIA 17135
SECUNIA 17282
SECUNIA 16999
SECUNIA 17007
SECUNIA 22875
SECUNIA 23058
SECUNIA 25373
SECUNIA 25432
SECUNIA 25787

Copyright © 2005 The MITRE Corporation.

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.