ByteOS Network

NVD Vulnerability Details :

CVE-2008-2292

Modified

Source-cve@mitre.org

Published At-18 May, 2008 | 14:20

Updated At-23 Apr, 2026 | 00:35

Buffer overflow in the __snprint_value function in snmp_get in Net-SNMP 5.1.4, 5.2.4, and 5.4.1, as used in SNMP.xs for Perl, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a large OCTETSTRING in an attribute value pair (AVP).

Date Added	Due Date	Vulnerability Name	Required Action
	N/A

Metrics

Type	Version	Base score	Base severity	Vector
Primary	2.0	6.8	MEDIUM	AV:N/AC:M/Au:N/C:P/I:P/A:P

Type: Primary

Version: 2.0

Base score: 6.8

Base severity: MEDIUM

Vector:

AV:N/AC:M/Au:N/C:P/I:P/A:P

CPE Matches

Net-SNMP

>>net-snmp>>5.1.4

cpe:2.3:a:net-snmp:net-snmp:5.1.4:*:*:*:*:*:*:*

Net-SNMP

>>net-snmp>>5.2.4

cpe:2.3:a:net-snmp:net-snmp:5.2.4:*:*:*:*:*:*:*

Net-SNMP

>>net-snmp>>5.4.1

cpe:2.3:a:net-snmp:net-snmp:5.4.1:*:*:*:*:*:*:*

Weaknesses

CWE ID	Type	Source
CWE-119	Primary	nvd@nist.gov

CWE ID: CWE-119

Type: Primary

Source: nvd@nist.gov

References

Hyperlink	Source	Resource
http://lists.opensuse.org/opensuse-security-announce/2008-08/msg00000.html	cve@mitre.org	N/A
http://secunia.com/advisories/30187	cve@mitre.org	Vendor Advisory
http://secunia.com/advisories/30615	cve@mitre.org	N/A
http://secunia.com/advisories/30647	cve@mitre.org	N/A
http://secunia.com/advisories/31155	cve@mitre.org	N/A
http://secunia.com/advisories/31334	cve@mitre.org	N/A
http://secunia.com/advisories/31351	cve@mitre.org	N/A
http://secunia.com/advisories/31467	cve@mitre.org	N/A
http://secunia.com/advisories/31568	cve@mitre.org	N/A
http://secunia.com/advisories/32664	cve@mitre.org	N/A
http://secunia.com/advisories/33003	cve@mitre.org	N/A
http://security.gentoo.org/glsa/glsa-200808-02.xml	cve@mitre.org	N/A
http://sourceforge.net/tracker/index.php?func=detail&aid=1826174&group_id=12694&atid=112694	cve@mitre.org	N/A
http://sunsolve.sun.com/search/document.do?assetkey=1-26-239785-1	cve@mitre.org	N/A
http://support.avaya.com/elmodocs2/security/ASA-2008-282.htm	cve@mitre.org	N/A
http://www.debian.org/security/2008/dsa-1663	cve@mitre.org	N/A
http://www.mandriva.com/security/advisories?name=MDVSA-2008:118	cve@mitre.org	N/A
http://www.redhat.com/support/errata/RHSA-2008-0529.html	cve@mitre.org	N/A
http://www.securityfocus.com/bid/29212	cve@mitre.org	N/A
http://www.securitytracker.com/id?1020527	cve@mitre.org	N/A
http://www.ubuntu.com/usn/usn-685-1	cve@mitre.org	N/A
http://www.vmware.com/security/advisories/VMSA-2008-0013.html	cve@mitre.org	N/A
http://www.vupen.com/english/advisories/2008/1528/references	cve@mitre.org	N/A
http://www.vupen.com/english/advisories/2008/2141/references	cve@mitre.org	N/A
http://www.vupen.com/english/advisories/2008/2361	cve@mitre.org	N/A
https://exchange.xforce.ibmcloud.com/vulnerabilities/42430	cve@mitre.org	N/A
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11261	cve@mitre.org	N/A
https://www.redhat.com/archives/fedora-package-announce/2008-June/msg00363.html	cve@mitre.org	N/A
https://www.redhat.com/archives/fedora-package-announce/2008-June/msg00380.html	cve@mitre.org	N/A
https://www.redhat.com/archives/fedora-package-announce/2008-June/msg00459.html	cve@mitre.org	N/A
http://lists.opensuse.org/opensuse-security-announce/2008-08/msg00000.html	af854a3a-2127-422b-91ae-364da2661108	N/A
http://secunia.com/advisories/30187	af854a3a-2127-422b-91ae-364da2661108	Vendor Advisory
http://secunia.com/advisories/30615	af854a3a-2127-422b-91ae-364da2661108	N/A
http://secunia.com/advisories/30647	af854a3a-2127-422b-91ae-364da2661108	N/A
http://secunia.com/advisories/31155	af854a3a-2127-422b-91ae-364da2661108	N/A
http://secunia.com/advisories/31334	af854a3a-2127-422b-91ae-364da2661108	N/A
http://secunia.com/advisories/31351	af854a3a-2127-422b-91ae-364da2661108	N/A
http://secunia.com/advisories/31467	af854a3a-2127-422b-91ae-364da2661108	N/A
http://secunia.com/advisories/31568	af854a3a-2127-422b-91ae-364da2661108	N/A
http://secunia.com/advisories/32664	af854a3a-2127-422b-91ae-364da2661108	N/A
http://secunia.com/advisories/33003	af854a3a-2127-422b-91ae-364da2661108	N/A
http://security.gentoo.org/glsa/glsa-200808-02.xml	af854a3a-2127-422b-91ae-364da2661108	N/A
http://sourceforge.net/tracker/index.php?func=detail&aid=1826174&group_id=12694&atid=112694	af854a3a-2127-422b-91ae-364da2661108	N/A
http://sunsolve.sun.com/search/document.do?assetkey=1-26-239785-1	af854a3a-2127-422b-91ae-364da2661108	N/A
http://support.avaya.com/elmodocs2/security/ASA-2008-282.htm	af854a3a-2127-422b-91ae-364da2661108	N/A
http://www.debian.org/security/2008/dsa-1663	af854a3a-2127-422b-91ae-364da2661108	N/A
http://www.mandriva.com/security/advisories?name=MDVSA-2008:118	af854a3a-2127-422b-91ae-364da2661108	N/A
http://www.redhat.com/support/errata/RHSA-2008-0529.html	af854a3a-2127-422b-91ae-364da2661108	N/A
http://www.securityfocus.com/bid/29212	af854a3a-2127-422b-91ae-364da2661108	N/A
http://www.securitytracker.com/id?1020527	af854a3a-2127-422b-91ae-364da2661108	N/A
http://www.ubuntu.com/usn/usn-685-1	af854a3a-2127-422b-91ae-364da2661108	N/A
http://www.vmware.com/security/advisories/VMSA-2008-0013.html	af854a3a-2127-422b-91ae-364da2661108	N/A
http://www.vupen.com/english/advisories/2008/1528/references	af854a3a-2127-422b-91ae-364da2661108	N/A
http://www.vupen.com/english/advisories/2008/2141/references	af854a3a-2127-422b-91ae-364da2661108	N/A
http://www.vupen.com/english/advisories/2008/2361	af854a3a-2127-422b-91ae-364da2661108	N/A
https://exchange.xforce.ibmcloud.com/vulnerabilities/42430	af854a3a-2127-422b-91ae-364da2661108	N/A
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11261	af854a3a-2127-422b-91ae-364da2661108	N/A
https://www.redhat.com/archives/fedora-package-announce/2008-June/msg00363.html	af854a3a-2127-422b-91ae-364da2661108	N/A
https://www.redhat.com/archives/fedora-package-announce/2008-June/msg00380.html	af854a3a-2127-422b-91ae-364da2661108	N/A
https://www.redhat.com/archives/fedora-package-announce/2008-June/msg00459.html	af854a3a-2127-422b-91ae-364da2661108	N/A

Hyperlink: http://lists.opensuse.org/opensuse-security-announce/2008-08/msg00000.html

Source: cve@mitre.org

Resource: N/A

Hyperlink: http://secunia.com/advisories/30187

Source: cve@mitre.org

Resource:

Vendor Advisory

Hyperlink: http://secunia.com/advisories/30615

Source: cve@mitre.org

Resource: N/A

Hyperlink: http://secunia.com/advisories/30647

Source: cve@mitre.org

Resource: N/A

Hyperlink: http://secunia.com/advisories/31155

Source: cve@mitre.org

Resource: N/A

Hyperlink: http://secunia.com/advisories/31334

Source: cve@mitre.org

Resource: N/A

Hyperlink: http://secunia.com/advisories/31351

Source: cve@mitre.org

Resource: N/A

Hyperlink: http://secunia.com/advisories/31467

Source: cve@mitre.org

Resource: N/A

Hyperlink: http://secunia.com/advisories/31568

Source: cve@mitre.org

Resource: N/A

Hyperlink: http://secunia.com/advisories/32664

Source: cve@mitre.org

Resource: N/A

Hyperlink: http://secunia.com/advisories/33003

Source: cve@mitre.org

Resource: N/A

Hyperlink: http://security.gentoo.org/glsa/glsa-200808-02.xml

Source: cve@mitre.org

Resource: N/A

Hyperlink: http://sourceforge.net/tracker/index.php?func=detail&aid=1826174&group_id=12694&atid=112694

Source: cve@mitre.org

Resource: N/A

Hyperlink: http://sunsolve.sun.com/search/document.do?assetkey=1-26-239785-1

Source: cve@mitre.org

Resource: N/A

Hyperlink: http://support.avaya.com/elmodocs2/security/ASA-2008-282.htm

Source: cve@mitre.org

Resource: N/A

Hyperlink: http://www.debian.org/security/2008/dsa-1663

Source: cve@mitre.org

Resource: N/A

Hyperlink: http://www.mandriva.com/security/advisories?name=MDVSA-2008:118

Source: cve@mitre.org

Resource: N/A

Hyperlink: http://www.redhat.com/support/errata/RHSA-2008-0529.html

Source: cve@mitre.org

Resource: N/A

Hyperlink: http://www.securityfocus.com/bid/29212

Source: cve@mitre.org

Resource: N/A

Hyperlink: http://www.securitytracker.com/id?1020527

Source: cve@mitre.org

Resource: N/A

Hyperlink: http://www.ubuntu.com/usn/usn-685-1

Source: cve@mitre.org

Resource: N/A

Hyperlink: http://www.vmware.com/security/advisories/VMSA-2008-0013.html

Source: cve@mitre.org

Resource: N/A

Hyperlink: http://www.vupen.com/english/advisories/2008/1528/references

Source: cve@mitre.org

Resource: N/A

Hyperlink: http://www.vupen.com/english/advisories/2008/2141/references

Source: cve@mitre.org

Resource: N/A

Hyperlink: http://www.vupen.com/english/advisories/2008/2361

Source: cve@mitre.org

Resource: N/A

Hyperlink: https://exchange.xforce.ibmcloud.com/vulnerabilities/42430

Source: cve@mitre.org

Resource: N/A

Hyperlink: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11261

Source: cve@mitre.org

Resource: N/A

Hyperlink: https://www.redhat.com/archives/fedora-package-announce/2008-June/msg00363.html

Source: cve@mitre.org

Resource: N/A

Hyperlink: https://www.redhat.com/archives/fedora-package-announce/2008-June/msg00380.html

Source: cve@mitre.org

Resource: N/A

Hyperlink: https://www.redhat.com/archives/fedora-package-announce/2008-June/msg00459.html

Source: cve@mitre.org

Resource: N/A

Hyperlink: http://lists.opensuse.org/opensuse-security-announce/2008-08/msg00000.html