|
|
|||
| Rule General Information |
|---|
| Release Date: | 2015-11-02 | |
| Rule Name: | FreeBSD bsnmpd GETBULK PDU Stack Buffer Overflow Vulnerability -2 (CVE-2014-1452) | |
| Severity: | ||
| CVE ID: | ||
| Rule Protection Details |
|---|
| Description: | Stack-based buffer overflow in lib/snmpagent.c in bsnmpd, as used in FreeBSD 8.3 through 10.0, allows remote attackers to cause a denial of service (daemon crash) and possibly execute arbitrary code via a crafted GETBULK PDU request. | |
| Impact: | Denial of service | |
| Affected OS: | FreeBSD | |
| Reference: | CVE-2014-1452 |
|
| Solutions |
|---|
| Upgrading to version 10.0-RELEASE, 10.0-RC5-p1, 10.0-RC4-p1, 10.0-RC3-p1, 10.0-RC2-p1, 10.0-RC1-p1, 9.2-STABLE, 9.2-RELEASE-p3, 9.1-RELEASE-p10, 8.4-STABLE, 8.4-RELEASE-p7, 8.3-RELEASE-p14 or higher eliminates this vulnerability. |