Sun Microsystems, Inc. Information for VU#854306

Multiple vulnerabilities in SNMPv1 request handling



Vendor Statement

Sun's SNMP product, Solstice Enterprise Agents (SEA) is affected by VU#854306 but not VU#107186. More specifically the main agent of SEA, snmpdx(1M), is affected on Solaris 2.6, 7, 8. Sun has released Security Bulletin #00215.

Sun Security Bulletins are available from:

Sun patches are available from:

Sun products which utilize SNMP are listed in the following SunAlert along with their vulnerability status:

Products listed with a vulnerability status of "Under Investigation" will be updated as soon as more information becomes available.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Vendor References



Sun Microsystem has published additional information regarding this vulnerability. For more details, please see Sun Alert ID 57404.

If you have feedback, comments, or additional information about this vulnerability, please send us email.