snmp_api.c in snmpd in Net-SNMP 5.2.x before 5.2.2, 5.1.x before 5.1.3, and 5.0.x before 5.0.10.2, when running in master agentx mode, allows remote attackers to cause a denial of service (crash) by causing a particular TCP disconnect, which triggers a free of an incorrect variable, a different vulnerability than CVE-2005-2177.
oryginał ENAV:N/AC:L/Au:N/C:C/I:C/A:CNet Snmp
APPNet-Snmp5.05.0.15.0.105.0.25.0.35.0.4_pre25.0.55.0.65.0.75.0.85.0.9Sourceforge Net Snmp
APPSourceforge≤ 5.0.9≤ 5.1.2≤ 5.2.1.2
Powiązane podatności
Buffer overflow w demonie snmptrapd biblioteki net-snmp
NET-SNMP version 5.7.2 contains a heap corruption vulnerability in the UDP protocol handler that can result in...
Net-SNMP through 5.8 has Improper Privilege Management because SNMP WRITE access to the EXTEND MIB provides th...
Net-SNMP through 5.7.3 allows Escalation of Privileges because of UNIX symbolic link (symlink) following.
snmp_oid_compare in snmplib/snmp_api.c in Net-SNMP before 5.8 has a NULL Pointer Exception bug that can be use...