Please sign in to comment.
The function snmp_generic:split_index_to_keys/2 handles dynamic length RowIndex members, but fails to check that their length actually falls within the constraints given by the MIB. The problem becomes real for table indices having an 'OCTET STRING' syntax, e.g. OCTET STRING(1..32) where it is possible to pass zero-length strings or strings longer than 32 chars without any validation failure.
- Loading branch information...