The netsnmp_udp_fmtaddr function (snmplib/snmpUDPDomain.c) in net-snmp 5.0.9 through 5.4.2.1, when using TCP wrappers for client authorization, does not properly parse hosts.allow rules, which allows remote attackers to bypass intended access restrictions and execute SNMP queries, related to "source/destination IP address confusion."
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2009-02-12T16:00:00
Updated: 2017-09-28T12:57:01
Reserved: 2009-02-12T00:00:00
Link: CVE-2008-6123
JSON object: View
NVD Information
Status : Analyzed
Published: 2009-02-12T16:30:00.187
Modified: 2024-01-12T20:41:14.313
Link: CVE-2008-6123
JSON object: View
Redhat Information
No data.
CWE