CyberSec.Space Logo
Back to CVE Browser

CVE-2008-2214

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1810%
EPSS Percentile25.53th
PublishedMay 14, 2008
Last ModifiedApr 23, 2026

Vulnerability Description

Stack-based buffer overflow in the Network Manager in Castle Rock Computing SNMPc 7.1 and earlier allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a long community string in an SNMP TRAP packet.

Affected Platforms (CPE)

πŸ“¦
Castle Rock

Snmpc

<= 7.1

References & Advisories

πŸ”— http://secunia.com/advisories/30036
πŸ”— http://securityreason.com/securityalert/3886
πŸ”— http://www.ngssoftware.com/advisories/critical-vulnerability-in-snmpc/
πŸ”— http://www.securityfocus.com/archive/1/491454/100/0/threaded
πŸ”— http://www.securityfocus.com/bid/28990
πŸ”— http://www.securitytracker.com/id?1019953
πŸ”— http://www.vupen.com/english/advisories/2008/1403/references
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/42104

Related Vulnerabilities

CVE-2003-074510.0

SNMPc 6.0.8 and earlier performs authentication to the server on the client side, which allows remote attackers to gain privileges...

CVE-2020-115538.8

An issue was discovered in Castle Rock SNMPc Online 12.10.10 before 2020-01-28. There is pervasive CSRF.

CVE-2015-60288.8

Castle Rock Computing SNMPc before 2015-12-17 has SQL injection via the sc parameter.

CVE-2019-134947.8

nodeimp.exe in Castle Rock SNMPc before 9.0.12.1 and 10.x before 10.0.9 has a stack-based buffer overflow via a long variable stri...