SNMP.HMAC.Validation.Authentication

NameSNMP.HMAC.Validation.Authentication.Bypass
Last Updated DateSep 02, 2008
Release DateJun 16, 2008
SeverityHigh
ImpactSecurity Bypass: Remote attackers can bypass security checking of vulnerable systems.
DescriptionThis indicates an attempt to exploit an authentication-bypass vulnerability in the SNMPv3 software implementation.

The vulnerability is caused by an error when the vulnerable software handles a crafted SNMPv3 HMAC authenticator field. It allows a remote attacker to gain read/write access to these vulnerable systems.
Affected ProductsNet-SNMP Net-SNMP 5.2.4
Net-SNMP Net-SNMP 5.3.2
Net-SNMP Net-SNMP 5.4.1
Recommended ActionsUpgrade to the latest version/firmware, available from the vendor's site.
Common Vulnerabilities and Exposures (CVE)http://cve.mitre.org/cgi-bin/cvename.cgi?name=2008-0960
Reference/shttp://www.securityfocus.com/bid/29623 (BugTraq)
http://milw0rm.org/exploits/5790
http://www.cisco.com/warp/public/707/cisco-sa-20080610-snmpv3.shtml
http://www.kb.cert.org/vuls/id/878044
Reference: VID-15671