2 matches found
CVE-2020-6058
CVE-2020-6058 corresponds to a Mini-SNMPD 1.4 out-of-bounds read vulnerability. The TALOS advisory (TALOS-2020-0975) documents a decoder bug in decode_cnt used while parsing SNMP packets, enabling a crafted request to trigger memory read past the packet end, causing information disclosure and den...
Vulnerability Spotlight: Denial-of-service, information leak bugs in Mini-SNMPD
Aleksandar Nikolic of Cisco Talos discovered these vulnerabilities. Blog by Jon Munshaw. Multiple vulnerabilities exist in Mini-SNMPD, a lightweight implementation of a Simple Network Management Protocol server. An attacker can exploit these bugs by providing a specially crafted SNMPD request to...