SNMP: Encoding Tag Length Too Large

This protocol anomaly triggers when it detects an SNMP messages where the tag length exceeds the UDP packet size. This can cause some servers to behave incorrectly.

Extended Description

If any LENGTH field in a BER-encoded tag exceeds the total size of the raw TCP/UDP datagram that contains it, then this would constitute a protocol anomaly. This condition could indicate a network configuration error. It could also indicate that an attacker is attempting to inject malformed SNMP packets into the network.

Short Name
SNMP:ENCODING:TLEN-TOO-BIG
Severity
Critical
Recommended
False
Recommended Action
None
Category
SNMP
Release Date
04/22/2003
Supported Platforms

srx-branch-12.3

srx-19.3

srx-branch-19.3

vsrx3bsd-19.2

srx-branch-19.4

vsrx-19.4

mx-12.3

mx-19.4

vmx-19.4

mx-19.3

vsrx3bsd-19.4

srx-19.4

vsrx-12.3

vmx-19.3

vsrx-19.2

srx-12.3

Sigpack Version
3324
False Positive
Unknown

Found a potential security threat?