CVE-2014-2284

Public on 2014-03-24

Modified on 2014-09-18

Description

The Linux implementation of the ICMP-MIB in Net-SNMP 5.5 before 5.5.2.1, 5.6.x before 5.6.2.1, and 5.7.x before 5.7.2.1 does not properly validate input, which allows remote attackers to cause a denial of service via unspecified vectors.

Severity

Medium

See what this means

CVSS v3 Base Score

5.0

See breakdown

Affected Packages

Platform	Package	Release Date	Advisory
Amazon Linux 1	net-snmp	2014-03-24	ALAS-2014-316

CVSS Scores

	Score Type	Score	Vector
Amazon Linux	CVSSv2	5.0	AV:N/AC:L/Au:N/C:N/I:N/A:P
NVD	CVSSv2	5.0	AV:N/AC:L/Au:N/C:N/I:N/A:P

References

FAQs regarding Amazon Linux ALAS/CVE Severity Red Hat: CVE-2014-2284 Mitre: CVE-2014-2284