Vulnerabilities > CVE-2003-0745 - Unspecified vulnerability in Castle Rock Computing Snmpc

CVSS 10.0 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

COMPLETE

network

low complexity

castle-rock-computing

critical

NVD

Published: 2003-10-20

Updated: 2008-09-10

Summary

SNMPc 6.0.8 and earlier performs authentication to the server on the client side, which allows remote attackers to gain privileges by decrypting the password that is returned by the server.

Vulnerable Configurations

Part	Description	Count
Application	Castle_Rock_Computing Castle Rock Computing Snmpc 5.1 Castle Rock Computing Snmpc 6.0 Castle Rock Computing Snmpc 6.0.5 Castle Rock Computing Snmpc 6.0.8	4

References

http://archives.neohapsis.com/archives/bugtraq/2003-08/0340.html