#VU15322 Null pointer dereference in Net-snmp


Published: 2018-10-11

Vulnerability identifier: #VU15322

Vulnerability risk: Low

CVSSv3.1: 5.7 [CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2018-18065

CWE-ID: CWE-476

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
Net-snmp
Server applications / Remote management servers, RDP, SSH

Vendor: net-snmp.sourceforge.net

Description

The vulnerability allows a remote authenticated attacker to cause DoS condition on the target system.

The vulnerability exists  in the _set_key() function, as defined in the agent/helpers/table_container.c source code file due to a NULL pointer exception bug. A remote attacker can send a malicious UDP packet, trigger a NULL pointer dereference condition, cause the application to crash.

Mitigation
Update to version 5.8.

Vulnerable software versions

Net-snmp: 5.0 - 5.7.3

External links
http://dumpco.re/blog/net-snmp-5.7.3-remote-dos

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.


Latest bulletins with this vulnerability


Multiple vulnerabilities in Dell Unity, Dell UnityVSA, and Dell Unity XT
Multiple vulnerabilities in Dell EMC Cloud Tiering Appliance Family
SUSE update for net-snmp
SUSE update for net-snmp
Multiple vulnerabilities in Siemens Industrial Products
OpenSUSE Linux update for net-snmp
OpenSUSE Linux update for net-snmp
Arch Linux update for net-snmp
Debian update for net-snmp
Denial of service vulnerabilities in Net-snmp