Vulnerabilities > CVE-2002-1570 - Remote Heap Overflow vulnerability in Net-SNMP snmpnetstat

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

low complexity

ucd-snmp

exploit available

NVD

Published: 2003-11-03

Updated: 2017-07-11

Summary

Heap-based buffer overflow in snmpnetstat for ucd-snmp 4.2.3 and earlier, and net-snmp, allows remote attackers to execute arbitrary code via multiple getnextrequest PDU messages with conflicting ifindex variables, which cause snmpnetstat to write variable data past the end of an array.

Vulnerable Configurations

Part	Description	Count
Application	Ucd-Snmp UCD Snmp UCD Snmp *	1

Exploit-Db

description	Net-SNMP 4.2.3 snmpnetstat Remote Heap Overflow Vulnerability. CVE-2002-1570. Remote exploit for linux platform
id	EDB-ID:21200
last seen	2016-02-02
modified	2002-01-03
published	2002-01-03
reporter	Juan M. de la Torre
source	https://www.exploit-db.com/download/21200/
title	Net-SNMP 4.2.3 snmpnetstat Remote Heap Overflow Vulnerability

Summary

Vulnerable Configurations

Exploit-Db

References