#VU15322 Null pointer dereference in Net-snmp - CVE-2018-18065


Vulnerability identifier: #VU15322

Vulnerability risk: Low

CVSSv4.0: 4.9 [CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2018-18065

CWE-ID: CWE-476

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
Net-snmp
Server applications / Remote management servers, RDP, SSH

Vendor: net-snmp.sourceforge.net

Description

The vulnerability allows a remote authenticated attacker to cause DoS condition on the target system.

The vulnerability exists  in the _set_key() function, as defined in the agent/helpers/table_container.c source code file due to a NULL pointer exception bug. A remote attacker can send a malicious UDP packet, trigger a NULL pointer dereference condition, cause the application to crash.

Mitigation
Update to version 5.8.

Vulnerable software versions

Net-snmp: 5.0 - 5.7.3

External links
https://dumpco.re/blog/net-snmp-5.7.3-remote-dos

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.


Latest bulletins with this vulnerability


Multiple vulnerabilities in Dell Chassis Management Controller (CMC) Firmware for Dell PowerEdge FX2 and VRTX
Multiple vulnerabilities in Dell Unity, Dell UnityVSA, and Dell Unity XT
Multiple vulnerabilities in Dell EMC Cloud Tiering Appliance Family
SUSE update for net-snmp
SUSE update for net-snmp
Multiple vulnerabilities in Siemens Industrial Products
Fedora 29 update for net-snmp
Fedora 28 update for net-snmp
OpenSUSE Linux update for net-snmp
OpenSUSE Linux update for net-snmp