Free SNMP provides basic support for SNMP protocol, allowing users to perform such tasks as viewing MIBs, performing Walk operation. The tool is designed with a user-friendly interface and is easy to use.

Posted by Johan Kuuse on Oct 03

Hi, my first mail to this list,

I have used (and modified) quite a few NSE scripts for SNMP.
Anyhow, AFAIK, all SNMP scripts (except "snmp-info") are limited to SNMPv1
and SNMPv2c:

nmap --script-help=snmp* | grep -B3 -A1 -i v3
----------------------------------
snmp-info
Categories: default version safe
https://nmap.org/nsedoc/scripts/snmp-info.html
Extracts basic information from an SNMPv3 GET request. The same probe is
used
here...

Posted by Ramu Burra via dev on Oct 31

Hi Daniel & NMAP team,

I hope this email finds you well.

I'm writing to inquire about the specific behaviour of Nmap's SNMP-SYSDescr query in situations where the target device
responds intermittently.

I'm particularly interested in knowing if there are any specific configuration options or techniques that can be
employed to increase the likelihood of successful SNMP-SYSDescr queries, especially when dealing with...

Posted by Daniel Miller on Oct 31

Ramu,

Nmap's snmp-sysdescr script currently uses a 5-second timeout and attempts
only once to send the SNMPv1 request. We agree that this could be improved
to provide better reliability. I will investigate further and respond again
with specific suggestions.

Dan

FreeBSD Security Advisory - A function extracting the length from type-length-value encoding is not properly validating the submitted length. A remote user could cause, for example, an out-of-bounds read, decoding of unrelated data, or trigger a crash of the software such as bsnmpd resulting in a denial of service.