CyberSec.Space Logo
CVEブラウザに戻る

CVE-2008-2214

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1810%
EPSS Percentile25.53th
Published2008年5月14日
Last Modified2026年4月23日

Vulnerability Description

Stack-based buffer overflow in the Network Manager in Castle Rock Computing SNMPc 7.1 and earlier allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a long community string in an SNMP TRAP packet.

Affected Platforms (CPE)

📦
Castle Rock

Snmpc

<= 7.1

References & Advisories

🔗 http://secunia.com/advisories/30036
🔗 http://securityreason.com/securityalert/3886
🔗 http://www.ngssoftware.com/advisories/critical-vulnerability-in-snmpc/
🔗 http://www.securityfocus.com/archive/1/491454/100/0/threaded
🔗 http://www.securityfocus.com/bid/28990
🔗 http://www.securitytracker.com/id?1019953
🔗 http://www.vupen.com/english/advisories/2008/1403/references
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/42104

関連する脆弱性情報

CVE-2003-074510.0

SNMPc 6.0.8 and earlier performs authentication to the server on the client side, which allows remote attackers to gain privileges...

CVE-2020-115538.8

An issue was discovered in Castle Rock SNMPc Online 12.10.10 before 2020-01-28. There is pervasive CSRF.

CVE-2015-60288.8

Castle Rock Computing SNMPc before 2015-12-17 has SQL injection via the sc parameter.

CVE-2019-134947.8

nodeimp.exe in Castle Rock SNMPc before 9.0.12.1 and 10.x before 10.0.9 has a stack-based buffer overflow via a long variable stri...