CVEブラウザに戻る

CVE-2005-1246

CRITICAL

10.0

CVSS Severity Score

EPSS Score0.1220%

EPSS Percentile16.37th

Published2005年4月24日

Last Modified2026年4月16日

Vulnerability Description

Format string vulnerability in the snmppd_log function in snmppd_util.c for snmppd 0.4.5 and earlier may allow remote attackers to cause a denial of service or execute arbitrary code via format string specifiers that are not properly handled in a syslog call.

Affected Platforms (CPE)

📦

Vladislav Bogdanov

Snmppd

= 0.4

📦

Vladislav Bogdanov

Snmppd

= 0.4.1

📦

Vladislav Bogdanov

Snmppd

= 0.4.2

📦

Vladislav Bogdanov

Snmppd

= 0.4.3

📦

Vladislav Bogdanov

Snmppd

= 0.4.3_special

📦

Vladislav Bogdanov

Snmppd

= 0.4.4

📦

Vladislav Bogdanov

Snmppd

= 0.4.5

References & Advisories

🔗 http://archives.neohapsis.com/archives/vulnwatch/2005-q2/0022.html

🔗 http://secunia.com/advisories/15120

🔗 http://x82.inetcop.org/h0me/adv1sor1es/INCSA.2005-0x82-027-SNMPPD.txt

🔗 http://archives.neohapsis.com/archives/vulnwatch/2005-q2/0022.html

🔗 http://secunia.com/advisories/15120

🔗 http://x82.inetcop.org/h0me/adv1sor1es/INCSA.2005-0x82-027-SNMPPD.txt

関連する脆弱性情報

CVE-2005-063510.0

Buffer overflow in Foxmail Server 2.0 allows remote attackers to execute arbitrary code via a long USER command.

CVE-2005-103710.0

Unknown vulnerability in AIX 5.3.0, when configured as an NIS client, allows remote attackers to gain root privileges.

CVE-2005-129910.0

The inserter.cgi script allows remote attackers to execute arbitrary commands via shell metacharacters in the argument.

CVE-2005-473010.0

Unspecified vulnerability in PEAR Text_Password 1.0 has unknown impact and attack vectors, related to "problematic seeding" of the...