CVE-2008-6123

Public Exploit

Description

The netsnmp_udp_fmtaddr function (snmplib/snmpUDPDomain.c) in net-snmp 5.0.9 through 5.4.2.1, when using TCP wrappers for client authorization, does not properly parse hosts.allow rules, which allows remote attackers to bypass intended access restrictions and execute SNMP queries, related to "source/destination IP address confusion."

Category

5.0
CVSS
Severity: Medium
CVSS 2.0 •
EPSS 0.63%
Vendor Advisory opensuse.org Vendor Advisory opensuse.org Vendor Advisory redhat.com Vendor Advisory opensuse.org
Affected: n/a n/a
Published at:
Updated at:

References

Link Tags
http://www.openwall.com/lists/oss-security/2009/02/12/2 mailing list
http://www.openwall.com/lists/oss-security/2009/02/12/7 mailing list
http://bugs.gentoo.org/show_bug.cgi?id=250429 issue tracking exploit
https://bugzilla.redhat.com/show_bug.cgi?id=485211 issue tracking patch
http://www.openwall.com/lists/oss-security/2009/02/12/4 mailing list
http://lists.opensuse.org/opensuse-security-announce/2009-06/msg00003.html mailing list vendor advisory
http://lists.opensuse.org/opensuse-security-announce/2010-02/msg00003.html mailing list vendor advisory
http://www.redhat.com/support/errata/RHSA-2009-0295.html not applicable vendor advisory
http://secunia.com/advisories/35685 third party advisory broken link
http://secunia.com/advisories/34499 third party advisory broken link
http://lists.opensuse.org/opensuse-security-announce/2009-07/msg00002.html mailing list vendor advisory
http://secunia.com/advisories/35416 third party advisory broken link
http://net-snmp.svn.sourceforge.net/viewvc/net-snmp?view=rev&revision=17367 product
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10289 vdb entry signature broken link
http://www.securitytracker.com/id?1021921 vdb entry third party advisory broken link
http://net-snmp.svn.sourceforge.net/viewvc/net-snmp/trunk/net-snmp/snmplib/snmpUDPDomain.c?r1=17325&r2=17367&pathrev=17367 product

Frequently Asked Questions

What is the severity of CVE-2008-6123?
CVE-2008-6123 has been scored as a medium severity vulnerability.
How to fix CVE-2008-6123?
To fix CVE-2008-6123, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2008-6123 being actively exploited in the wild?
It is possible that CVE-2008-6123 is being exploited or will be exploited in a near future based on public information. According to its EPSS score, there is a ~1% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
This platform uses data from the NIST NVD, MITRE CVE, MITRE CWE, First.org and CISA KEV but is not endorsed or certified by these entities. CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site.
© 2025 Under My Watch. All Rights Reserved.