Lucene search

[email protected]CVE-2008-2214

HistoryMay 14, 2008 - 6:20 p.m.

CVE-2008-2214

2008-05-1418:20:00

CWE-119

[email protected]

web.nvd.nist.gov

cve-2008-2214

stack-based buffer overflow

network manager

snmp

denial of service

arbitrary code execution

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

7.9 High

AI Score

Confidence

Low

0.684 Medium

EPSS

Percentile

98.0%

JSON

Stack-based buffer overflow in the Network Manager in Castle Rock Computing SNMPc 7.1 and earlier allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a long community string in an SNMP TRAP packet.

Affected configurations

NVD

Node

castle_rocksnmpcRange≤7.1

CPENameOperatorVersion
castle_rock:snmpccastle rock snmpcle7.1

CPE	Name	Operator	Version
castle_rock:snmpc	castle rock snmpc	le	7.1

References

secunia.com/advisories/30036

securityreason.com/securityalert/3886

www.ngssoftware.com/advisories/critical-vulnerability-in-snmpc/

www.securityfocus.com/archive/1/491454/100/0/threaded

www.securityfocus.com/bid/28990

www.securitytracker.com/id?1019953

www.vupen.com/english/advisories/2008/1403/references

exchange.xforce.ibmcloud.com/vulnerabilities/42104

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

7.9 High

AI Score

Confidence

Low

0.684 Medium

EPSS

Percentile

98.0%

JSON

Related for CVE-2008-2214

saint4 checkpoint_advisories2 cvelist1 nessus1 exploitdb1 prion1 nvd1