Dartware LLC Information for VU#854306

Multiple vulnerabilities in SNMPv1 request handling

Status

Not Affected

Vendor Statement

      Dartware, LLC (www.dartware.com) supplies two products that use SNMPv1 in a
      manager role, InterMapper and SNMP Watcher. These products are not vulnerable to
      the SNMP vulnerability described in [VU#854306 and VU#107186]. This statement
      applies to all present and past versions of these two software packages.

      In addition, our port of net-snmp to MacOS X has been updated to version 4.2.2,
      and is not susceptible to this attack. More information is available from
      http://www.dartware.com/net-snmp/

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Vendor References

None

Addendum

The CERT/CC has no additional comments at this time.

If you have feedback, comments, or additional information about this vulnerability, please send us email.