Monfox LLC Information for VU#854306

Multiple vulnerabilities in SNMPv1 request handling



Vendor Statement

      Monfox has completed testing of our Java DynamicSNMP(TM) Agent and Manager
      Development Toolkits in accordance with advisory CA-2002-03. Releases of
      DynamicSNMP prior to Version 3_3_2 are susceptible to 3 of the test cases
      under certain conditions.

      A new release containing fixes for all known vulnerabilities is now
      available for download. We will provide patch releases for prior versions
      upon request in the event that any customer is not in the position to
      upgrade to the latest version.

      For more information, please feel free to contact Monfox by email at or by phone at 678-771-4239.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Vendor References



The CERT/CC has no additional comments at this time.

If you have feedback, comments, or additional information about this vulnerability, please send us email.