CVE-2002-1570

Sažetak

Heap-based buffer overflow in snmpnetstat for ucd-snmp 4.2.3 and earlier, and net-snmp, allows remote attackers to execute arbitrary code via multiple getnextrequest PDU messages with conflicting ifindex variables, which cause snmpnetstat to write variable data past the end of an array.

Reference

http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000696
http://www.securityfocus.com/archive/1/248141
http://www.securityfocus.com/bid/3780
https://exchange.xforce.ibmcloud.com/vulnerabilities/7776

CVSS

Base:	7.5
Impact:	6.4
Exploitability:	10.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	PARTIAL	PARTIAL

CVSS vektor

AV:N/AC:L/Au:N/C:P/I:P/A:P

Zadnje važnije ažuriranje

11-07-2017 - 01:29

Objavljeno

03-11-2003 - 05:00