Vulnerabilities > CVE-2006-6305 - Unspecified vulnerability in Net-Snmp 5.3

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

low complexity

net-snmp

NVD

Published: 2006-12-06

Updated: 2017-07-29

Summary

Unspecified vulnerability in Net-SNMP 5.3 before 5.3.0.1, when configured using the rocommunity or rouser snmpd.conf tokens, causes Net-SNMP to grant write access to users or communities that only have read-only access.

Vulnerable Configurations

Part	Description	Count
Application	Net-Snmp NET Snmp NET Snmp 5.3	1

Statements

contributor	Joshua Bressers
lastmodified	2007-03-14
organization	Red Hat
statement	Not vulnerable. This issue does not affect the versions of net-smtp as shipped with Red Hat Enterprise Linux 2.1, 3, or 4. Red Hat Enterprise Linux 5 is not vulnerable to this issue as it contains a backported patch.

References

http://net-snmp.sourceforge.net/about/ChangeLog.html
http://net-snmp.sourceforge.net/about/news.html
http://secunia.com/advisories/23285
http://securitytracker.com/id?1017355
http://sourceforge.net/forum/forum.php?forum_id=531399
http://www.securityfocus.com/bid/21503
https://exchange.xforce.ibmcloud.com/vulnerabilities/30782