Title: Multiple Vendor SNMP Request Handling Vulnerabilities

Severity: CRITICAL

Description:

SNMP requests are messages sent from manager to agent systems. They typically poll the agent for current performance or configuration information, ask for the next SNMP object in a Management Information Base (MIB), or modify the configuration settings of the agent.

Multiple vulnerabilities have been discovered in a number of SNMP implementations. The vulnerabilities are known to exist in the process of decoding and interpreting SNMP request messages.

Among the possible consequences are denial of service and allowing attackers to compromise target systems. These depend on the individual vulnerabilities in each affected product.

Microsoft has confirmed that remote attackers may execute arbitrary code on vulnerable hosts if the SNMP service is enabled.

Affected Products:

3Com Dual Speed Hub
3Com PS Hub 40
3Com PS Hub 50
3Com Switch 1100
3Com Switch 3300
3Com Switch 4400
3Com Switch 4900
3Com WebCache 1000
3Com WebCache 3000
AdventNet Agent Toolkit - C Edition
AdventNet Agent Toolkit Java/JMX Edition
AdventNet CLI API
AdventNet Configuration Management Toolkit
AdventNet Fault Management Toolkit
AdventNet Management Builder
AdventNet Mediation Server
AdventNet SNMP API
AdventNet SNMP Utilities
AdventNet Web NMS
AdventNet Web NMS MSP Edition
Avaya DefinityOne Media Servers
Avaya IP600 Media Servers
Avaya S3400 Message Application Server
Avaya S8100 Media Servers
CacheFlow CacheOS
CacheFlow CacheOS 3.1.0
CacheFlow CacheOS 3.1.0 .02
CacheFlow CacheOS 3.1.0 .02
CacheFlow CacheOS 3.1.0 .03
CacheFlow CacheOS 3.1.0 .04
CacheFlow CacheOS 3.1.0 .05
CacheFlow CacheOS 3.1.0 .06
CacheFlow CacheOS 3.1.0 .07
CacheFlow CacheOS 3.1.0 .08
CacheFlow CacheOS 3.1.0 .09
CacheFlow CacheOS 3.1.0 .10
CacheFlow CacheOS 3.1.0 .20
CacheFlow CacheOS 3.1.11
CacheFlow CacheOS 3.1.12
CacheFlow CacheOS 3.1.13
CacheFlow CacheOS 3.1.14
CacheFlow CacheOS 3.1.15
CacheFlow CacheOS 3.1.16
CacheFlow CacheOS 3.1.17
CacheFlow CacheOS 3.1.18
CacheFlow CacheOS 3.1.19
CacheFlow CacheOS 3.1.21
CacheFlow CacheOS 4.0.0
CacheFlow CacheOS 4.0.11
CacheFlow CacheOS 4.0.12
CacheFlow CacheOS 4.0.13
CacheFlow CacheOS 4.0.14
Caldera OpenLinux Server 3.1.0
Caldera OpenLinux Server 3.1.1
Caldera OpenLinux Workstation 3.1.0
Caldera OpenLinux Workstation 3.1.1
Caldera OpenServer 5.0.0
Caldera OpenServer 5.0.5
Caldera OpenServer 5.0.6
Caldera OpenUnix 8.0.0
Caldera UnixWare 7
Caldera UnixWare 7.1.0 .0
Caldera UnixWare 7.1.1
Check Point Software Firewall-1 4.1.0
Check Point Software Firewall-1 4.1.0 SP1
Check Point Software Firewall-1 4.1.0 SP2
Check Point Software Firewall-1 4.1.0 SP3
Check Point Software Firewall-1 4.1.0 SP4
Check Point Software Firewall-1 4.1.0 SP5
Check Point Software VPN-1 4.1.0
Check Point Software VPN-1 4.1.0 SP1
Check Point Software VPN-1 4.1.0 SP2
Check Point Software VPN-1 4.1.0 SP3
Check Point Software VPN-1 4.1.0 SP4
Computer Associates Unicenter
Comtek Services NMServer 3.4.0
Debian Linux 2.2.0
HP EMS A.03.00
HP EMS A.03.10
HP EMS A.03.20
HP HP-UX (VVOS) 10.24.0
HP HP-UX (VVOS) 11.0.0 4
HP HP-UX 10.0.0
HP HP-UX 10.0.0 1
HP HP-UX 10.10.0
HP HP-UX 10.16.0
HP HP-UX 10.20.0
HP HP-UX 10.26.0
HP HP-UX 10.30.0
HP HP-UX 10.34.0
HP HP-UX 10.8.0
HP HP-UX 10.9.0
HP HP-UX 11.0.0
HP HP-UX 11.11.0
HP HP-UX 11.20.0
HP ITO/VPO/OVO Unix 6.0.0
HP JetDirect x.08.00
HP JetDirect x.20.00
HP MC/ServiceGuard
HP MPE/iX 4.0.0
HP MPE/iX 4.5.0
HP MPE/iX 5.0.0
HP MPE/iX 5.5.0
HP MPE/iX 6.0.0
HP MPE/iX 6.5.0
HP OV/SAM 3.0.1
HP OpenView Distributed Management 5.0.0 3
HP OpenView Distributed Management 6.0.0
HP OpenView Emanate SNMP Agent 14.2.0 HP-UX 10.20
HP OpenView Emanate SNMP Agent 14.2.0 HP-UX 11.X
HP OpenView Emanate SNMP Agent 14.2.0 Solaris 2.X
HP OpenView Extensible SNMP Agent 4.0.0
HP OpenView Network Node Manager 4.1.0 1 HP-UX
HP OpenView Network Node Manager 4.1.0 1 Solaris
HP OpenView Network Node Manager 5.0.0 1
HP OpenView Network Node Manager 5.0.0 1 HP-UX
HP OpenView Network Node Manager 5.0.0 1 Solaris
HP OpenView Network Node Manager 5.0.2 Windows NT 3.51/4.0
HP OpenView Network Node Manager 6.0.0 HP-UX 10.20
HP OpenView Network Node Manager 6.0.0 HP-UX 11.X
HP OpenView Network Node Manager 6.0.0 NT 4.X/Windows 2000
HP OpenView Network Node Manager 6.0.0 Solaris
HP OpenView Network Node Manager 6.1.0 HP-UX 10.X
HP OpenView Network Node Manager 6.1.0 HP-UX 11.X
HP OpenView Network Node Manager 6.1.0 Solaris
HP OpenView Network Node Manager 6.10.0
HP OpenView Network Node Manager 6.2.0
HP OpenView Network Node Manager 6.2.0 HP-UX 10.X
HP OpenView Network Node Manager 6.2.0 HP-UX 11.X
HP OpenView Network Node Manager 6.2.0 Solaris
HP Procurve Switch 1600M
HP Procurve Switch 2400M
HP Procurve Switch 2424M
HP Procurve Switch 2512
HP Procurve Switch 2524
HP Procurve Switch 2525
HP Procurve Switch 4000M
HP Procurve Switch 4108GL
HP Procurve Switch 4108GL-bundle
HP Procurve Switch 8000M
HP Secure OS software for Linux 1.0.0
IBM AIX 4.3.0
IBM AIX 4.3.1
IBM AIX 4.3.2
IBM AIX 4.3.3
IBM AIX 5.1
Innerdive Solutions Router IP Console 3.3.0 .0.406
Juniper Networks JUNOS 5.0.0
Juniper Networks JUNOS 5.1.0
Lantronix LRS
Lotus Domino 5.0.0
Lotus Domino 5.0.1
Lotus Domino 5.0.2
Lotus Domino 5.0.3
Lotus Domino 5.0.4
Lotus Domino 5.0.5
Lotus Domino 5.0.6
Lotus Domino 5.0.7
Lotus Domino 5.0.7 a
Lotus Domino 5.0.8
Lotus Domino 5.0.9
Lotus Domino 5.0.9 a
Lotus Domino SNMP Agents 5.0.1 HP-UX
Lotus Domino SNMP Agents 5.0.1 Solaris SPARC
Lotus Domino SNMP Agents 5.0.1 Solaris x86
Microsoft Windows 2000 Advanced Server
Microsoft Windows 2000 Advanced Server SP1
Microsoft Windows 2000 Advanced Server SP2
Microsoft Windows 2000 Datacenter Server
Microsoft Windows 2000 Datacenter Server SP1
Microsoft Windows 2000 Datacenter Server SP2
Microsoft Windows 2000 Professional
Microsoft Windows 2000 Professional SP1
Microsoft Windows 2000 Professional SP2
Microsoft Windows 2000 Server
Microsoft Windows 2000 Server SP1
Microsoft Windows 2000 Server SP2
Microsoft Windows 2000 Terminal Services
Microsoft Windows 2000 Terminal Services SP1
Microsoft Windows 2000 Terminal Services SP2
Microsoft Windows 95
Microsoft Windows 98
Microsoft Windows 98SE
Microsoft Windows NT Enterprise Server 4.0
Microsoft Windows NT Enterprise Server 4.0 SP1
Microsoft Windows NT Enterprise Server 4.0 SP2
Microsoft Windows NT Enterprise Server 4.0 SP3
Microsoft Windows NT Enterprise Server 4.0 SP4
Microsoft Windows NT Enterprise Server 4.0 SP5
Microsoft Windows NT Enterprise Server 4.0 SP6
Microsoft Windows NT Enterprise Server 4.0 SP6a
Microsoft Windows NT Server 4.0
Microsoft Windows NT Server 4.0 SP1
Microsoft Windows NT Server 4.0 SP2
Microsoft Windows NT Server 4.0 SP3
Microsoft Windows NT Server 4.0 SP4
Microsoft Windows NT Server 4.0 SP5
Microsoft Windows NT Server 4.0 SP6
Microsoft Windows NT Server 4.0 SP6a
Microsoft Windows NT Terminal Server 4.0
Microsoft Windows NT Terminal Server 4.0 SP1
Microsoft Windows NT Terminal Server 4.0 SP2
Microsoft Windows NT Terminal Server 4.0 SP3
Microsoft Windows NT Terminal Server 4.0 SP4
Microsoft Windows NT Terminal Server 4.0 SP5
Microsoft Windows NT Terminal Server 4.0 SP6
Microsoft Windows NT Workstation 4.0
Microsoft Windows NT Workstation 4.0 SP1
Microsoft Windows NT Workstation 4.0 SP2
Microsoft Windows NT Workstation 4.0 SP3
Microsoft Windows NT Workstation 4.0 SP4
Microsoft Windows NT Workstation 4.0 SP5
Microsoft Windows NT Workstation 4.0 SP6
Microsoft Windows NT Workstation 4.0 SP6a
Microsoft Windows XP Home
Microsoft Windows XP Professional
Net-SNMP ucd-snmp 4.1.1
Net-SNMP ucd-snmp 4.2.1
Nokia IP380
Nokia IPSO 3.1.3
Nokia IPSO 3.3.0
Nokia IPSO 3.3.1
Nokia IPSO 3.4.0
Nokia IPSO 3.4.1
Novell Netware 4.0.0
Novell Netware 4.11.0
Novell Netware 4.2.0
Novell Netware 5.0.0
Novell Netware 5.1.0
Novell Netware 6.0.0
Oracle Enterprise Manager 1.6.5
Oracle Enterprise Manager 2.0.0
Oracle Enterprise Manager 2.1.0
Oracle Enterprise Manager 2.2.0
Oracle Enterprise Manager 9.0.1
Process Software Multinet 4.4.0
Process Software TCPWare 5.5.0
RedBack Networks AOS
RedHat Linux 6.2.0 alpha
RedHat Linux 6.2.0 i386
RedHat Linux 6.2.0 sparc
RedHat Linux 7.0.0 alpha
RedHat Linux 7.0.0 i386
RedHat Linux 7.1.0 alpha
RedHat Linux 7.1.0 i386
RedHat Linux 7.1.0 ia64
RedHat Linux 7.2.0 i386
RedHat Linux 7.2.0 ia64
S.u.S.E. Linux 6.4.0 alpha
S.u.S.E. Linux 6.4.0 i386
S.u.S.E. Linux 6.4.0 ppc
S.u.S.E. Linux 7.0.0 alpha
S.u.S.E. Linux 7.0.0 i386
S.u.S.E. Linux 7.0.0 ppc
S.u.S.E. Linux 7.0.0 sparc
S.u.S.E. Linux 7.1.0 alpha
S.u.S.E. Linux 7.1.0 ppc
S.u.S.E. Linux 7.1.0 sparc
S.u.S.E. Linux 7.1.0 x86
S.u.S.E. Linux 7.2.0 i386
S.u.S.E. Linux 7.3.0 i386
S.u.S.E. Linux 7.3.0 ppc
S.u.S.E. Linux 7.3.0 sparc
SCO eServer 2.3.1
SGI Brocade 2.6.0 .0
SGI Emulex 1Gbit FibreChannel Hub
SNMP Research DR-Web Manager 15.3.0
SNMP Research Enterpol 15.3.0
SNMP Research Mid-Level Manager 15.3.0
Sun Enterprise 10000 Server SSP 3.3.0
Sun Enterprise 10000 Server SSP 3.4.0
Sun Enterprise 10000 Server SSP 3.5.0
Sun SunATM 2.1.0
Sun SunATM 3.0.1
Sun SunATM 4.0.1
Sun SunATM 5.0.0
Sun SunMC 2.1.1
Sun SunMC 3.0.0
Sun SunMC 3.0.0 RR
Sun SunNet Manager Intel 2.3.0
Sun SunNet Manager Sparc 2.3.0
nCipher nFast 300
nCipher nFast 800
nCipher nForce
nCipher nShield

References:

CERT: CA-2002-03
Microsoft: Microsoft Security Bulletin MS02-006
Oracle: Oracle Security Alert #30
SecurityFocus: Feds, Industry, Battle the Biggest Bug
Sun: Sun Alert ID: 46343
Sun Microsystems: 42769
Sun Microsystems: 43365

Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.

J-Security Center

Title: Multiple Vendor SNMP Request Handling Vulnerabilities

Severity: CRITICAL

Description:

Affected Products:

References: