Vulnerability Details CVE-2002-1570
Heap-based buffer overflow in snmpnetstat for ucd-snmp 4.2.3 and earlier, and net-snmp, allows remote attackers to execute arbitrary code via multiple getnextrequest PDU messages with conflicting ifindex variables, which cause snmpnetstat to write variable data past the end of an array.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.097
EPSS Ranking 92.6%
CVSS Severity
CVSS v2 Score 7.5
References
- http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000696
- http://www.securityfocus.com/archive/1/248141
- http://www.securityfocus.com/bid/3780
- https://exchange.xforce.ibmcloud.com/vulnerabilities/7776
- http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000696
- http://www.securityfocus.com/archive/1/248141
- http://www.securityfocus.com/bid/3780
- https://exchange.xforce.ibmcloud.com/vulnerabilities/7776