Red Hat, Inc. Information for VU#878044

SNMPv3 improper HMAC validation allows authentication bypass

Status

Affected

Vendor Statement

This issue affects the ucd-snmp package as shipped with Red Hat Enterprise Linux 2.1, and the net-snmp package as shipped with Red Hat Enterprise Linux 3, 4, and 5. Updated packages to correct this issue are available along with our advisories at the URL below and via the Red Hat Network:

http://rhn.redhat.com/cve/CVE-2008-2292.html

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

Vendor References

None

Addendum

There are no additional comments at this time.

If you have feedback, comments, or additional information about this vulnerability, please send us email.