RSS   Vulnerabilities for 'Ucd-snmp'   RSS

2004-12-31
 
CVE-2004-2300

 

 
Buffer overflow in snmpd in ucd-snmp 4.2.6 and earlier, when installed setuid root, allows local users to execute arbitrary code via a long -p command line argument. NOTE: it is not clear whether there are any standard configurations in which snmpd is installed setuid or setgid. If not, then this issue should not be included in CVE.

 
2003-11-03
 
CVE-2002-1570

 

 
Heap-based buffer overflow in snmpnetstat for ucd-snmp 4.2.3 and earlier, and net-snmp, allows remote attackers to execute arbitrary code via multiple getnextrequest PDU messages with conflicting ifindex variables, which cause snmpnetstat to write variable data past the end of an array.

 
1999-04-06
 
CVE-1999-1245

CWE-Other
 

 
vacm ucd-snmp SNMP server, version 3.52, does not properly disable access to the public community string, which could allow remote attackers to obtain sensitive information.

 


Copyright 2024, cxsecurity.com

 

Back to Top