Vulnerability Development mailing list archives
Re: UCD-4.2.2 snmptrapd verification
From: KF <dotslash () snosoft com>
Date: Tue, 19 Feb 2002 13:58:26 -0500
Olaf you are one of few that can duplicate this... can you tell us a little more about what you guys found? Is this caused by a specific version of libdb and do you know which one? Was the box you were on intel based or PowerPC based? Wes from NAI could only duplicate this on a "old" PowerPC box. I also run PowerPC, an intel box to throw in the mix would perhaps make this more interesting?
-KF Olaf Kirch wrote:
On Fri, Feb 15, 2002 at 10:39:51AM -0500, KF wrote:http://www.security-focus.com/bid/4088 stated that UCD-4.2.2 was not vulnerable to trap handling vulnerabilities. I can verify that this is NOT the case and that it is indeed vulnerable to the trap issues.When we investigated this issue in OpenLinux we also found that snmptrapd was dying, but when wr investigated this we found that these crashes were caused by libdb, which by default replaces snprintf() with an implementation that simply does a vsprintf() on the arguments. Needless to say, snmptrapd is linked against libdb for some reason or other. Olaf
Current thread:
- UCD-4.2.2 snmptrapd verification KF (Feb 15)
- Re: UCD-4.2.2 snmptrapd verification Olaf Kirch (Feb 18)
- Re: UCD-4.2.2 snmptrapd verification Wes Hardaker (Feb 19)
- Re: UCD-4.2.2 snmptrapd verification KF (Feb 19)
- Re: UCD-4.2.2 snmptrapd verification Olaf Kirch (Feb 20)
- Re: UCD-4.2.2 snmptrapd verification Olaf Kirch (Feb 18)