|Category:||Red Hat Local Security Checks|
|Title:||RedHat Security Advisory RHSA-2009:1124|
|Summary:||Redhat Security Advisory RHSA-2009:1124|
The remote host is missing updates announced in
The Simple Network Management Protocol (SNMP) is a protocol used for
A divide-by-zero flaw was discovered in the snmpd daemon. A remote attacker
could issue a specially-crafted GETBULK request that could crash the snmpd
Note: An attacker must have read access to the SNMP server in order to
exploit this flaw. In the default configuration, the community name
public grants read-only access. In production deployments, it is
recommended to change this default community name.
All net-snmp users should upgrade to these updated packages, which contain
a backported patch to correct this issue. After installing the update, the
snmpd and snmptrapd daemons will be restarted automatically.
Please note that this update is available via
Red Hat Network. To use Red Hat Network, launch the Red
Hat Update Agent with the following command: up2date
Common Vulnerability Exposure (CVE) ID: CVE-2009-1887|
|Copyright||Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com|
|This is only one of 58880 vulnerability tests in our test suite. Find out more about running a complete security audit.|
To run a free test of this vulnerability against your system, register below.