← back
CVE-2015-5677

CVE-2015-5677

EPSS 0.5%
bsnmpd, as used in FreeBSD 9.3, 10.1, and 10.2, uses world-readable permissions on the snmpd.config file, which allows local users to obtain the secret key for USM authentication by reading the file.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://pierrekim.github.io/blog/2016-01-15-cve-2015-5677-freebsd-bsnmpd.htmlhttps://www.freebsd.org/security/advisories/FreeBSD-SA-16:06.bsnmpd.aschttp://www.securitytracker.com/id/1034678