CVE - CVE-2005-2177

CVE-ID
CVE-2005-2177	Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
Description
Net-SNMP 5.0.x before 5.0.10.2, 5.2.x before 5.2.1.2, and 5.1.3, when net-snmp is using stream sockets such as TCP, allows remote attackers to cause a denial of service (daemon hang and CPU consumption) via a TCP packet of length 1, which triggers an infinite loop.
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
BID:14168 URL:http://www.securityfocus.com/bid/14168 BID:21256 URL:http://www.securityfocus.com/bid/21256 BUGTRAQ:20061113 VMSA-2006-0005 - VMware ESX Server 2.5.4 Upgrade Patch 1 URL:http://www.securityfocus.com/archive/1/451419/100/200/threaded BUGTRAQ:20061113 VMSA-2006-0006 - VMware ESX Server 2.5.3 Upgrade Patch 4 URL:http://www.securityfocus.com/archive/1/451404/100/0/threaded BUGTRAQ:20061113 VMSA-2006-0007 - VMware ESX Server 2.1.3 Upgrade Patch 2 URL:http://www.securityfocus.com/archive/1/451417/100/200/threaded BUGTRAQ:20061113 VMSA-2006-0008 - VMware ESX Server 2.0.2 Upgrade Patch 2 URL:http://www.securityfocus.com/archive/1/451426/100/200/threaded CONFIRM:http://support.avaya.com/elmodocs2/security/ASA-2005-225.pdf CONFIRM:http://www.vmware.com/download/esx/esx-202-200610-patch.html CONFIRM:http://www.vmware.com/download/esx/esx-213-200610-patch.html CONFIRM:http://www.vmware.com/download/esx/esx-254-200610-patch.html DEBIAN:DSA-873 URL:http://www.debian.org/security/2005/dsa-873 MANDRIVA:MDKSA-2006:025 URL:~~http://www.mandriva.com/security/advisories?name=MDKSA-2006:025~~ (Obsolete source) MISC:http://www.net-snmp.org/about/ChangeLog.html MLIST:[net-snmp-announce] 20050701 Multiple new Net-SNMP releases to fix a security related bug URL:http://sourceforge.net/mailarchive/forum.php?thread_id=7659656&forum_id=12455 OVAL:oval:org.mitre.oval:def:9986 URL:https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9986 REDHAT:RHSA-2005:373 URL:http://www.redhat.com/support/errata/RHSA-2005-373.html REDHAT:RHSA-2005:395 URL:http://www.redhat.com/support/errata/RHSA-2005-395.html REDHAT:RHSA-2005:720 URL:http://www.redhat.com/support/errata/RHSA-2005-720.html SECTRACK:1017273 URL:http://securitytracker.com/id?1017273 SECUNIA:15930 URL:http://secunia.com/advisories/15930 SECUNIA:16999 URL:http://secunia.com/advisories/16999 SECUNIA:17007 URL:http://secunia.com/advisories/17007 SECUNIA:17135 URL:http://secunia.com/advisories/17135 SECUNIA:17217 URL:http://secunia.com/advisories/17217 SECUNIA:17282 URL:http://secunia.com/advisories/17282 SECUNIA:17343 URL:http://secunia.com/advisories/17343 SECUNIA:18635 URL:http://secunia.com/advisories/18635 SECUNIA:22875 URL:http://secunia.com/advisories/22875 SECUNIA:23058 URL:http://secunia.com/advisories/23058 SECUNIA:25373 URL:http://secunia.com/advisories/25373 SECUNIA:25432 URL:http://secunia.com/advisories/25432 SECUNIA:25787 URL:http://secunia.com/advisories/25787 SUNALERT:102725 URL:~~http://sunsolve.sun.com/search/document.do?assetkey=1-26-102725-1~~ (Obsolete source) SUSE:SUSE-SR:2005:024 URL:http://www.novell.com/linux/security/advisories/2005_24_sr.html SUSE:SUSE-SR:2007:012 URL:http://www.novell.com/linux/security/advisories/2007_12_sr.html SUSE:SUSE-SR:2007:013 URL:http://www.novell.com/linux/security/advisories/2007_13_sr.html TRUSTIX:2005-0034 URL:~~http://www.trustix.org/errata/2005/0034/~~ (Obsolete source - check if archived by the Wayback Machine) UBUNTU:USN-190-1 URL:http://www.ubuntu.com/usn/usn-190-1 VUPEN:ADV-2006-4502 URL:~~http://www.vupen.com/english/advisories/2006/4502~~ (Obsolete source) VUPEN:ADV-2006-4677 URL:~~http://www.vupen.com/english/advisories/2006/4677~~ (Obsolete source) VUPEN:ADV-2007-1883 URL:~~http://www.vupen.com/english/advisories/2007/1883~~ (Obsolete source)
Assigning CNA
MITRE Corporation
Date Record Created
20050710	Disclaimer: The record creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20050710)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is an record on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: CVE Request Web Form (select "Other" from dropdown)