Lucene search
+L

91 matches found

seebug.org
seebug.org
added 2008/11/05 12:0 a.m.143 views

Net-SNMP GETBULK请求整数溢出拒绝服务漏洞

CVECAN ID: CVE-2008-4309 Net-SNMP是一个免费的、开放源码的SNMP实现,以前称为UCD-SNMP。 Net-SNMP的实现上存在漏洞,远程攻击者可能利用此漏洞导致服务器拒绝服务。问题存在于agent/snmpagent.c文件的netsnmpcreatesubtreecache函数中,精心构造的畸形的SNMP GETBULK请求会导致函数发生整数溢出,在后续的处理中导致服务进程崩溃。 0 Net-SNMP net-snmp 5.4.x 5.4.2.1 Net-SNMP net-snmp 5.3.x 5.3.2.3 Net-SNMP net-snmp 5.2...

5CVSS7AI score0.04926EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2008/11/04 12:0 a.m.34 views

RHEL 3 / 4 / 5 : net-snmp (RHSA-2008:0971)

Updated net-snmp packages that fix a security issue are now available for Red Hat Enterprise Linux 3, 4, and 5. This update has been rated as having important security impact by the Red Hat Security Response Team. The Simple Network Management Protocol SNMP is a protocol used for network...

7.5CVSS6.2AI score0.04926EPSS
Exploits1References3
NVD
NVD
added 2008/10/31 8:29 p.m.28 views

CVE-2008-4309

Integer overflow in the netsnmpcreatesubtreecache function in agent/snmpagent.c in net-snmp 5.4 before 5.4.2.1, 5.3 before 5.3.2.3, and 5.2 before 5.2.5.1 allows remote attackers to cause a denial of service crash via a crafted SNMP GETBULK request, which triggers a heap-based buffer overflow,...

7.5CVSS7.5AI score0.04926EPSS
Exploits1References42
UbuntuCve
UbuntuCve
added 2008/10/31 8:29 p.m.28 views

CVE-2008-4309

Integer overflow in the netsnmpcreatesubtreecache function in agent/snmpagent.c in net-snmp 5.4 before 5.4.2.1, 5.3 before 5.3.2.3, and 5.2 before 5.2.5.1 allows remote attackers to cause a denial of service crash via a crafted SNMP GETBULK request, which triggers a heap-based buffer overflow,...

7.5CVSS6.7AI score0.04926EPSS
Exploits1References2
Debian CVE
Debian CVE
added 2008/10/31 8:0 p.m.63 views

CVE-2008-4309

Integer overflow in the netsnmpcreatesubtreecache function in agent/snmpagent.c in net-snmp 5.4 before 5.4.2.1, 5.3 before 5.3.2.3, and 5.2 before 5.2.5.1 allows remote attackers to cause a denial of service crash via a crafted SNMP GETBULK request, which triggers a heap-based buffer overflow,...

7.5CVSS6.8AI score0.04926EPSS
Exploits1
CVE
CVE
added 2008/10/31 8:0 p.m.220 views

CVE-2008-4309

Net-SNMP vulnerability CVE-2008-4309: an integer overflow in netsnmp_create_subtree_cache() in agent/snmp_agent.c allows remote DoS via crafted SNMP GETBULK requests, causing a heap-based overflow and crash. Affected are net-snmp 5.4 before 5.4.2.1, 5.3 before 5.3.2.3, and 5.2 before 5.2.5.1. Mit...

7.5CVSS7.5AI score0.04926EPSS
Exploits1References42Affected Software1
Cvelist
Cvelist
added 2008/10/31 8:0 p.m.34 views

CVE-2008-4309

Integer overflow in the netsnmpcreatesubtreecache function in agent/snmpagent.c in net-snmp 5.4 before 5.4.2.1, 5.3 before 5.3.2.3, and 5.2 before 5.2.5.1 allows remote attackers to cause a denial of service crash via a crafted SNMP GETBULK request, which triggers a heap-based buffer overflow,...

7.5AI score0.04926EPSS
Exploits1References42
CVE
CVE
added 2007/08/13 9:0 p.m.65 views

CVE-2007-4309

CVE-2007-4309 affects IBM Lotus Notes 5.x through 7.0.2. The description states that user‑assisted remote authenticated administrators can obtain a cleartext notes.id password by setting notes.ini (1) KFM_ShowEntropy and (2) Debug_Outfile, making this a vulnerability separate from CVE-2005-2696. ...

3.5CVSS5.9AI score0.00852EPSS
Exploits0References3Affected Software1
Tenable Nessus
Tenable Nessus
added 2007/05/20 12:0 a.m.108 views

Solaris 10 (sparc) : 120272-40 (deprecated)

SunOS 5.10: SMA patch. Date this patch was last updated by Sun : May/11/17 This plugin has been deprecated and either replaced with individual 120272 patch-revision plugins, or deemed non-security related. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. @DEPRECATED@ Disabled on 2018/03/12...

10CVSS6.6AI score0.6879EPSS
Exploits16References6
CVE
CVE
added 2005/12/17 12:0 a.m.54 views

CVE-2005-4309

CVE-2005-4309 concerns ezUpload Pro 2.2 and earlier. The vulnerability is an SQL injection in the application’s search module parameters, allowing remote attackers to execute arbitrary SQL commands. The available documents confirm the affected product (ezUpload Pro 2.2 and earlier) and the root c...

7.5CVSS8.4AI score0.0133EPSS
Exploits1References4Affected Software1
Microsoft Security Update
Microsoft Security Update
added 1976/01/01 12:0 a.m.2 views

MS:79B27019-3090-4309-BFDC-C8BE9B21AB96

...

7AI score
Exploits0
Rows per page
Query Builder