Vulnerability Details CVE-2004-2300
Buffer overflow in snmpd in ucd-snmp 4.2.6 and earlier, when installed setuid root, allows local users to execute arbitrary code via a long -p command line argument. NOTE: it is not clear whether there are any standard configurations in which snmpd is installed setuid or setgid. If not, then this issue should not be included in CVE.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 48.2%
CVSS Severity
CVSS v2 Score 7.2
References
- http://www.packetstormsecurity.org/0405-advisories/snmpdadv.txt
- http://www.securityfocus.com/bid/10396
- https://exchange.xforce.ibmcloud.com/vulnerabilities/16245
- http://www.packetstormsecurity.org/0405-advisories/snmpdadv.txt
- http://www.securityfocus.com/bid/10396
- https://exchange.xforce.ibmcloud.com/vulnerabilities/16245