rpm package
suse/net-snmp&distro=SUSE Linux Enterprise Server for SAP Applications 11 SP3
pkg:rpm/suse/net-snmp&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2011%20SP3
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2015-5621 | Hig | 7.5 | < 5.4.2.1-8.12.24.1 | 5.4.2.1-8.12.24.1 | Aug 19, 2015 | The snmp_pdu_parse function in snmp_api.c in net-snmp 5.7.2 and earlier does not remove the varBind variable in a netsnmp_variable_list item when parsing of the SNMP PDU fails, which allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code |
- affected < 5.4.2.1-8.12.24.1fixed 5.4.2.1-8.12.24.1
The snmp_pdu_parse function in snmp_api.c in net-snmp 5.7.2 and earlier does not remove the varBind variable in a netsnmp_variable_list item when parsing of the SNMP PDU fails, which allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code