Sun Microsystems, Inc. Information for VU#107186

Multiple vulnerabilities in SNMPv1 trap handling



Vendor Statement

Sun's SNMP product, Solstice Enterprise Agents (SEA) is affected by VU#854306 but not VU#107186. More specifically the main agent of SEA, snmpdx(1M), is affected on Solaris 2.6, 7, 8. Sun has released Security Bulletin #00215.

Sun Security Bulletins are available from:

Sun patches are available from:

Sun products which utilize SNMP are listed in the following SunAlert along with their vulnerability status:

Products listed with a vulnerability status of "Under Investigation" will be updated as soon as more information becomes available.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Vendor References



The CERT/CC has no additional comments at this time.

If you have feedback, comments, or additional information about this vulnerability, please send us email.