PublicDate: 2007-11-06 21:46:00 UTC
Candidate: CVE-2007-5846
References:
 https://ubuntu.com/security/notices/USN-564-1
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5846
Description:
 The SNMP agent (snmp_agent.c) in net-snmp before 5.4.1 allows remote
 attackers to cause a denial of service (CPU and memory consumption) via a
 GETBULK request with a large max-repeaters value.
Ubuntu-Description:
Notes:
 jdstrand> bug report has debdiffs
 jdstrand> raised to medium as it is remote DoS
Bugs:
 https://bugs.launchpad.net/ubuntu/+source/net-snmp/+bug/164007
Priority: medium
Discovered-by:
Assigned-to: jdstrand
CVSS: 
upstream_net-snmp: released (5.4.1)
dapper_net-snmp: released (5.2.1.2-4ubuntu2.2)
edgy_net-snmp: released (5.2.2-5ubuntu1.1)
feisty_net-snmp: released (5.2.3-4ubuntu1.1)
gutsy_net-snmp: released (5.3.1-6ubuntu2.1)
devel_net-snmp: not-affected