Given that net-snmp (reportedly another CMU-snmplib derivate) is
reported vulnerable in FreeBSD then we quite likely are as well..
I would not be surprised if there is multiple stack overflows on
malformed SNMP packets there..
Regards
Henrik
On Tuesday 12 February 2002 22.45, Alex Rousskov wrote:
> FYI: http://www.cert.org/advisories/CA-2002-03.html
>
> I have not tested whether Squid implementation is vulnerable, but
> given an impressive list of vulnerable products, somebody may want
> to test Squid SNMP code as well.
>
>
> Alex.
Received on Tue Feb 12 2002 - 16:37:58 MST
This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 16:14:47 MST