CVE - CVE-2008-0960

CVE-ID
CVE-2008-0960	Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
Description
SNMPv3 HMAC verification in (1) Net-SNMP 5.2.x before 5.2.4.1, 5.3.x before 5.3.2.1, and 5.4.x before 5.4.1.1; (2) UCD-SNMP; (3) eCos; (4) Juniper Session and Resource Control (SRC) C-series 1.0.0 through 2.0.0; (5) NetApp (aka Network Appliance) Data ONTAP 7.3RC1 and 7.3RC2; (6) SNMP Research before 16.2; (7) multiple Cisco IOS, CatOS, ACE, and Nexus products; (8) Ingate Firewall 3.1.0 and later and SIParator 3.1.0 and later; (9) HP OpenView SNMP Emanate Master Agent 15.x; and possibly other products relies on the client to specify the HMAC length, which makes it easier for remote attackers to bypass SNMP authentication via a length value of 1, which only checks the first byte.
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
APPLE:APPLE-SA-2008-06-30 URL:http://lists.apple.com/archives/security-announce/2008//Jun/msg00002.html BID:29623 URL:http://www.securityfocus.com/bid/29623 BUGTRAQ:20080609 [oCERT-2008-006] multiple SNMP implementations HMAC authentication spoofing URL:http://www.securityfocus.com/archive/1/493218/100/0/threaded BUGTRAQ:20081031 VMSA-2008-0017 Updated ESX packages for libxml2, ucd-snmp, libtiff URL:http://www.securityfocus.com/archive/1/497962/100/0/threaded CERT:TA08-162A URL:http://www.us-cert.gov/cas/techalerts/TA08-162A.html CERT-VN:VU#878044 URL:http://www.kb.cert.org/vuls/id/878044 CISCO:20080610 SNMP Version 3 Authentication Vulnerabilities URL:http://www.cisco.com/warp/public/707/cisco-sa-20080610-snmpv3.shtml CONFIRM:http://sourceforge.net/forum/forum.php?forum_id=833770 CONFIRM:http://sourceforge.net/tracker/index.php?func=detail&aid=1989089&group_id=12694&atid=456380 CONFIRM:http://support.apple.com/kb/HT2163 CONFIRM:http://support.avaya.com/elmodocs2/security/ASA-2008-282.htm CONFIRM:http://www.kb.cert.org/vuls/id/CTAR-7FBS8Q CONFIRM:http://www.kb.cert.org/vuls/id/MIMG-7ETS5Z CONFIRM:http://www.kb.cert.org/vuls/id/MIMG-7ETS87 CONFIRM:http://www.vmware.com/security/advisories/VMSA-2008-0013.html CONFIRM:https://bugzilla.redhat.com/show_bug.cgi?id=447974 DEBIAN:DSA-1663 URL:http://www.debian.org/security/2008/dsa-1663 EXPLOIT-DB:5790 URL:https://www.exploit-db.com/exploits/5790 FEDORA:FEDORA-2008-5215 URL:https://www.redhat.com/archives/fedora-package-announce/2008-June/msg00363.html FEDORA:FEDORA-2008-5218 URL:https://www.redhat.com/archives/fedora-package-announce/2008-June/msg00459.html FEDORA:FEDORA-2008-5224 URL:https://www.redhat.com/archives/fedora-package-announce/2008-June/msg00380.html GENTOO:GLSA-200808-02 URL:http://security.gentoo.org/glsa/glsa-200808-02.xml HP:HPSBMA02439 URL:http://marc.info/?l=bugtraq&m=127730470825399&w=2 HP:SSRT080082 URL:http://marc.info/?l=bugtraq&m=127730470825399&w=2 MANDRIVA:MDVSA-2008:118 URL:~~http://www.mandriva.com/security/advisories?name=MDVSA-2008:118~~ (Obsolete source) MISC:http://www.ocert.org/advisories/ocert-2008-006.html MISC:http://www.vmware.com/security/advisories/VMSA-2008-0017.html MLIST:[oss-security] 20080609 [oCERT-2008-006] multiple SNMP implementations HMAC authentication spoofing URL:http://www.openwall.com/lists/oss-security/2008/06/09/1 MLIST:[productinfo] 20080611 Ingate Firewall and SIParator affected by SNMPv3 vulnerability URL:http://lists.ingate.com/pipermail/productinfo/2008/000021.html OVAL:oval:org.mitre.oval:def:10820 URL:https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10820 OVAL:oval:org.mitre.oval:def:5785 URL:https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5785 OVAL:oval:org.mitre.oval:def:6414 URL:https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6414 REDHAT:RHSA-2008:0528 URL:http://rhn.redhat.com/errata/RHSA-2008-0528.html REDHAT:RHSA-2008:0529 URL:http://www.redhat.com/support/errata/RHSA-2008-0529.html SECTRACK:1020218 URL:http://www.securitytracker.com/id?1020218 SECUNIA:30574 URL:http://secunia.com/advisories/30574 SECUNIA:30596 URL:http://secunia.com/advisories/30596 SECUNIA:30612 URL:http://secunia.com/advisories/30612 SECUNIA:30615 URL:http://secunia.com/advisories/30615 SECUNIA:30626 URL:http://secunia.com/advisories/30626 SECUNIA:30647 URL:http://secunia.com/advisories/30647 SECUNIA:30648 URL:http://secunia.com/advisories/30648 SECUNIA:30665 URL:http://secunia.com/advisories/30665 SECUNIA:30802 URL:http://secunia.com/advisories/30802 SECUNIA:31334 URL:http://secunia.com/advisories/31334 SECUNIA:31351 URL:http://secunia.com/advisories/31351 SECUNIA:31467 URL:http://secunia.com/advisories/31467 SECUNIA:31568 URL:http://secunia.com/advisories/31568 SECUNIA:32664 URL:http://secunia.com/advisories/32664 SECUNIA:33003 URL:http://secunia.com/advisories/33003 SECUNIA:35463 URL:http://secunia.com/advisories/35463 SREASON:3933 URL:http://securityreason.com/securityalert/3933 SUNALERT:238865 URL:~~http://sunsolve.sun.com/search/document.do?assetkey=1-26-238865-1~~ (Obsolete source) SUSE:SUSE-SA:2008:039 URL:http://lists.opensuse.org/opensuse-security-announce/2008-08/msg00000.html UBUNTU:USN-685-1 URL:http://www.ubuntu.com/usn/usn-685-1 VUPEN:ADV-2008-1787 URL:~~http://www.vupen.com/english/advisories/2008/1787/references~~ (Obsolete source) VUPEN:ADV-2008-1788 URL:~~http://www.vupen.com/english/advisories/2008/1788/references~~ (Obsolete source) VUPEN:ADV-2008-1797 URL:~~http://www.vupen.com/english/advisories/2008/1797/references~~ (Obsolete source) VUPEN:ADV-2008-1800 URL:~~http://www.vupen.com/english/advisories/2008/1800/references~~ (Obsolete source) VUPEN:ADV-2008-1801 URL:~~http://www.vupen.com/english/advisories/2008/1801/references~~ (Obsolete source) VUPEN:ADV-2008-1836 URL:~~http://www.vupen.com/english/advisories/2008/1836/references~~ (Obsolete source) VUPEN:ADV-2008-1981 URL:~~http://www.vupen.com/english/advisories/2008/1981/references~~ (Obsolete source) VUPEN:ADV-2008-2361 URL:~~http://www.vupen.com/english/advisories/2008/2361~~ (Obsolete source) VUPEN:ADV-2008-2971 URL:~~http://www.vupen.com/english/advisories/2008/2971~~ (Obsolete source) VUPEN:ADV-2009-1612 URL:~~http://www.vupen.com/english/advisories/2009/1612~~ (Obsolete source)
Assigning CNA
CERT/CC
Date Record Created
20080225	Disclaimer: The record creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20080225)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is an record on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: CVE Request Web Form (select "Other" from dropdown)