Internet Security Systems - AlertCon(TM)

A Quick Note on Sun's SNMPXDMI Agent

Posted by Jamie Licitra
 on August 01, 2008 at 11:07 AM EDT.

A short time ago; while doing some development and testing with our Proventia Network Enterprise Scanner product, we noticed that the "scanner" was crashing the SNMPXDMI daemon.  Scanner was reporting back a DoS on the SUN SNMPXDMI daemon when it was trying to process some (unauthenticated) malformed data.

After a careful review of the apparent DoS - we reported our information to Sun.  They quickly patched the issue and then credited us. 

Thank you to Sun for their cooperation on this one.

Comments or opinions expressed on this Weblog are the opinions of the authors alone. They are not necessarily reviewed in advance by anyone but the individual authors, and neither IBM Internet Security Systems nor any other party necessarily agrees with them. The views expressed by outside contributors and links to outside websites do not represent the views of IBM Internet Security Systems, its management or employees. All content on this Weblog has been made available on an “as-is” basis, and IBM Internet Security Systems shall not be liable for any direct or indirect damages arising out of use of this Weblog.