Vulnerability Name: | CVE-2008-2946 (CCN-6245) | ||||||||
Assigned: | 2001-03-15 | ||||||||
Published: | 2001-03-15 | ||||||||
Updated: | 2018-10-30 | ||||||||
Summary: | The SNMP-DMI mapper subagent daemon (aka snmpXdmid) in Solstice Enterprise Agents in Sun Solaris 8 through 10 allows remote attackers to cause a denial of service (daemon crash) via malformed packets. | ||||||||
CVSS v3 Severity: | 10.0 Critical (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H)
| ||||||||
CVSS v2 Severity: | 7.8 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C) 5.8 Medium (Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C/E:U/RL:OF/RC:C)
7.4 High (CCN Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C/E:U/RL:OF/RC:C)
| ||||||||
Vulnerability Type: | CWE-noinfo CWE-399 | ||||||||
Vulnerability Consequences: | Gain Access | ||||||||
References: | Source: CCN Type: BugTraq Mailing List, Wed Mar 14 2001 - 12:30:08 CST Solaris /usr/lib/dmi/snmpXdmid vulnerability Source: MITRE Type: CNA CVE-2001-0236 Source: MITRE Type: CNA CVE-2008-2946 Source: CCN Type: SA30863 Sun Solaris snmpXdmid Denial of Service Source: SECUNIA Type: Vendor Advisory 30863 Source: CCN Type: SECTRACK ID: 1020381 Solaris snmpXdmid Bug Lets Remote Users Deny Service Source: CCN Type: Sun Microsystems, Inc. Security Bulletin #00207 snmpXdmid Source: SUNALERT Type: UNKNOWN 237985 Source: CCN Type: Sun Alert ID: 237985 A Security Vulnerability in the Solaris snmpXdmid(1M) may lead to a Denial of Service (DoS) condition Source: CCN Type: CERT Advisory CA-2001-05 Exploitation of snmpXdmid Source: CCN Type: CIAC Information Bulletin L-065 Solaris Exploitation of snmpXdmid Source: CCN Type: Information Technology Security Experts Web site Solaris SNMP to DMI mapper daemon vulnerability Source: CCN Type: US-CERT VU#648304 Sun Solaris DMI to SNMP mapper daemon snmpXdmid contains buffer overflow Source: CCN Type: OSVDB ID: 46558 Solaris SNMP-DMI Mapper Subagent Ddaemon (snmpXdmid(1M)) Malformed Packet Remote DoS Source: CCN Type: OSVDB ID: 546 Solaris snmpXdmid Long Indication Event Overflow Source: CCN Type: BID-2417 Solaris snmpXdmid Buffer Overflow Vulnerability Source: BID Type: UNKNOWN 29965 Source: CCN Type: BID-29965 Sun Solaris Unspecified 'snmpXdmid(1M)' Remote Denial of Service Vulnerability Source: SECTRACK Type: UNKNOWN 1020381 Source: VUPEN Type: UNKNOWN ADV-2008-1965 Source: XF Type: UNKNOWN solaris-snmpxdmid-bo(6245) | ||||||||
Vulnerable Configuration: | Configuration 1: Configuration CCN 1: Denotes that component is vulnerable | ||||||||
BACK |