snmplib/mib.c in net-snmp 5.7.0 and earlier, when the -OQ option is used, allows remote attackers to cause a denial of service (snmptrapd crash) via a crafted SNMP trap message, which triggers a conversion to the variable type designated in the MIB file, as demonstrated by a NULL type in an ifMtu trap message.
| Product | Vendor | Version |
|---|---|---|
| n/a | n/a | < b1fdb0bb3b6513f5bd26f92369fd6ac1a2422d8b |
| n/a | n/a | <= 6.4.* |