SNMP
Products
1- 7 CVEs
Recent CVEs
7| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2002-0013 | 0.07 | — | 0.51 | Feb 13, 2002 | Vulnerabilities in the SNMPv1 request handling of a large number of SNMP implementations allow remote attackers to cause a denial of service or gain privileges via (1) GetRequest, (2) GetNextRequest, and (3) SetRequest messages, as demonstrated by the PROTOS c06-SNMPv1 test… | |||
| CVE-2002-1570 | 0.03 | — | 0.06 | Nov 3, 2003 | Heap-based buffer overflow in snmpnetstat for ucd-snmp 4.2.3 and earlier, and net-snmp, allows remote attackers to execute arbitrary code via multiple getnextrequest PDU messages with conflicting ifindex variables, which cause snmpnetstat to write variable data past the end of… | |||
| CVE-2002-0012 | 0.02 | — | 0.24 | Feb 13, 2002 | Vulnerabilities in a large number of SNMP implementations allow remote attackers to cause a denial of service or gain privileges via SNMPv1 trap handling, as demonstrated by the PROTOS c06-SNMPv1 test suite. NOTE: It is highly likely that this candidate will be SPLIT into… | |||
| CVE-2004-2300 | 0.00 | — | 0.01 | Dec 31, 2004 | Buffer overflow in snmpd in ucd-snmp 4.2.6 and earlier, when installed setuid root, allows local users to execute arbitrary code via a long -p command line argument. NOTE: it is not clear whether there are any standard configurations in which snmpd is installed setuid or… | |||
| CVE-2003-0745 | 0.00 | — | 0.02 | Oct 20, 2003 | SNMPc 6.0.8 and earlier performs authentication to the server on the client side, which allows remote attackers to gain privileges by decrypting the password that is returned by the server. | |||
| CVE-1999-0472 | 0.00 | — | 0.02 | Apr 7, 1999 | The SNMP default community name "public" is not properly removed in NetApps C630 Netcache, even if the administrator tries to disable it. | |||
| CVE-1999-1245 | 0.00 | — | 0.01 | Apr 6, 1999 | vacm ucd-snmp SNMP server, version 3.52, does not properly disable access to the public community string, which could allow remote attackers to obtain sensitive information. |
- CVE-2002-0013Feb 13, 2002risk 0.07cvss —epss 0.51
Vulnerabilities in the SNMPv1 request handling of a large number of SNMP implementations allow remote attackers to cause a denial of service or gain privileges via (1) GetRequest, (2) GetNextRequest, and (3) SetRequest messages, as demonstrated by the PROTOS c06-SNMPv1 test…
- CVE-2002-1570Nov 3, 2003risk 0.03cvss —epss 0.06
Heap-based buffer overflow in snmpnetstat for ucd-snmp 4.2.3 and earlier, and net-snmp, allows remote attackers to execute arbitrary code via multiple getnextrequest PDU messages with conflicting ifindex variables, which cause snmpnetstat to write variable data past the end of…
- CVE-2002-0012Feb 13, 2002risk 0.02cvss —epss 0.24
Vulnerabilities in a large number of SNMP implementations allow remote attackers to cause a denial of service or gain privileges via SNMPv1 trap handling, as demonstrated by the PROTOS c06-SNMPv1 test suite. NOTE: It is highly likely that this candidate will be SPLIT into…
- CVE-2004-2300Dec 31, 2004risk 0.00cvss —epss 0.01
Buffer overflow in snmpd in ucd-snmp 4.2.6 and earlier, when installed setuid root, allows local users to execute arbitrary code via a long -p command line argument. NOTE: it is not clear whether there are any standard configurations in which snmpd is installed setuid or…
- CVE-2003-0745Oct 20, 2003risk 0.00cvss —epss 0.02
SNMPc 6.0.8 and earlier performs authentication to the server on the client side, which allows remote attackers to gain privileges by decrypting the password that is returned by the server.
- CVE-1999-0472Apr 7, 1999risk 0.00cvss —epss 0.02
The SNMP default community name "public" is not properly removed in NetApps C630 Netcache, even if the administrator tries to disable it.
- CVE-1999-1245Apr 6, 1999risk 0.00cvss —epss 0.01
vacm ucd-snmp SNMP server, version 3.52, does not properly disable access to the public community string, which could allow remote attackers to obtain sensitive information.