This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

SNMP Vulnerability

www.cert.org has an advisory, "Multiple Vulnerabilities in Many Implementations of the Simple Network Management Protocol (SNMP)"

Does anyone know if Astaro is OK?

This thread was automatically locked due to age.

Parents

0 John Scimone over 23 years ago

because the coding error here lies in the actual base protocol implementation chances are that astaro is vulnerable until they incorporate a patched snmp system in one of their up2dates. As for the exploitability of the bug I have no idea b/c I haven't researched it that much further and done any first hand testing, however you can be assured that it will result in at least a denial of service and possible priveledge escalation.
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 John Scimone over 23 years ago

because the coding error here lies in the actual base protocol implementation chances are that astaro is vulnerable until they incorporate a patched snmp system in one of their up2dates. As for the exploitability of the bug I have no idea b/c I haven't researched it that much further and done any first hand testing, however you can be assured that it will result in at least a denial of service and possible priveledge escalation.
Cancel
Vote Up 0 Vote Down

Cancel

Children

0 BillH over 23 years ago in reply to John Scimone

I hope the Astaro guys know about this & are on top of it. I half-heartedly tried to find a way on their site to send my original post directly to them, but couldn't locate how to do it.
Cancel
Vote Up 0 Vote Down

Cancel
0 ollion over 23 years ago in reply to BillH

Hello,

it is not accessable until you allow it.

Regards
ollion

[ 15 February 2002: Message edited by: ollion ]
Cancel
Vote Up 0 Vote Down

Cancel