10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.684 Medium
EPSS
Percentile
98.0%
Added: 07/21/2008
CVE: CVE-2008-2214
BID: 28990
OSVDB: 44885
SNMPc Network Manager is a distributed network management and monitoring solution.
A buffer overflow vulnerability in SNMPc Network Manager allows remote attackers to execute arbitrary commands by sending an SNMP TRAP message with a long, specially crafted community string.
Upgrade to SNMPc Network Manager version 7.1.1 or higher.
<http://archives.neohapsis.com/archives/bugtraq/2008-04/0361.html>
Exploit works on SNMPc Network Manager 7.1.0. It may take longer than usual to establish the connection after successful exploitation.
Windows 2000
Windows Server 2003