CyberSec.Space Logo
Back to CVE Browser

CVE-2018-1000116

CRITICAL
9.8
CVSS Severity Score
EPSS Score0.1800%
EPSS Percentile16.29th
PublishedMar 7, 2018
Last ModifiedNov 21, 2024

Vulnerability Description

NET-SNMP version 5.7.2 contains a heap corruption vulnerability in the UDP protocol handler that can result in command execution.

Affected Platforms (CPE)

πŸ“¦
Net Snmp

Net Snmp

= 5.7.2
πŸ’»
Debian

Debian Linux

= 7.0

References & Advisories

πŸ”— https://lists.debian.org/debian-lts-announce/2018/03/msg00020.html
πŸ”— https://sourceforge.net/p/net-snmp/bugs/2821/
πŸ”— https://www.debian.org/security/2018/dsa-4154
πŸ”— https://lists.debian.org/debian-lts-announce/2018/03/msg00020.html
πŸ”— https://sourceforge.net/p/net-snmp/bugs/2821/
πŸ”— https://www.debian.org/security/2018/dsa-4154

Related Vulnerabilities

CVE-2008-096010.0

SNMPv3 HMAC verification in (1) Net-SNMP 5.2.x before 5.2.4.1, 5.3.x before 5.3.2.1, and 5.4.x before 5.4.1.1; (2) UCD-SNMP; (3) e...

CVE-2005-483710.0

snmp_api.c in snmpd in Net-SNMP 5.2.x before 5.2.2, 5.1.x before 5.1.3, and 5.0.x before 5.0.10.2, when running in master agentx m...

CVE-2005-174010.0

fixproc in Net-snmp 5.x before 5.2.1-r1 creates temporary files insecurely, which allows local users to modify the contents of tho...

CVE-2018-203969.8

NET&SYS MNG2120J 5.76.1006c and MNG6300 5.83.6305jrc2 devices allow remote attackers to discover credentials via iso.3.6.1.4.1.449...