CVSS: 7.8EPSS: 0%CPEs: 16EXPL: 0CVE-2005-2811
https://notcve.org/view.php?id=CVE-2005-2811
07 Sep 2005 — Untrusted search path vulnerability in Net-SNMP 5.2.1.2 and earlier, on Gentoo Linux, installs certain Perl modules with an insecure DT_RPATH, which could allow local users to gain privileges. • http://www.gentoo.org/security/en/glsa/glsa-200509-05.xml •
CVSS: 7.5EPSS: 11%CPEs: 14EXPL: 0CVE-2005-2177
https://notcve.org/view.php?id=CVE-2005-2177
10 Jul 2005 — Net-SNMP 5.0.x before 5.0.10.2, 5.2.x before 5.2.1.2, and 5.1.3, when net-snmp is using stream sockets such as TCP, allows remote attackers to cause a denial of service (daemon hang and CPU consumption) via a TCP packet of length 1, which triggers an infinite loop. • http://secunia.com/advisories/15930 • CWE-20: Improper Input Validation •
CVSS: 10.0EPSS: 2%CPEs: 9EXPL: 0CVE-2005-1740
https://notcve.org/view.php?id=CVE-2005-1740
24 May 2005 — fixproc in Net-snmp 5.x before 5.2.1-r1 creates temporary files insecurely, which allows local users to modify the contents of those files to execute arbitrary commands, or overwrite arbitrary files via a symlink attack. • http://secunia.com/advisories/15471 •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2004-2300
https://notcve.org/view.php?id=CVE-2004-2300
31 Dec 2004 — Buffer overflow in snmpd in ucd-snmp 4.2.6 and earlier, when installed setuid root, allows local users to execute arbitrary code via a long -p command line argument. NOTE: it is not clear whether there are any standard configurations in which snmpd is installed setuid or setgid. If not, then this issue should not be included in CVE. • http://www.packetstormsecurity.org/0405-advisories/snmpdadv.txt •
CVSS: 9.1EPSS: 0%CPEs: 7EXPL: 0CVE-2003-0935
https://notcve.org/view.php?id=CVE-2003-0935
12 Nov 2003 — Net-SNMP before 5.0.9 allows a user or community to access data in MIB objects, even if that data is not allowed to be viewed. Net-SNMP anteriores a 5.0.9 permite a un usuario o comunidad acceder a datos en objetos MIB , incluso si no está perimtido que los datos sean vistos. • http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000778 •
CVSS: 9.8EPSS: 9%CPEs: 1EXPL: 3CVE-2002-1570 – Net-SNMP 4.2.3 - snmpnetstat Remote Heap Overflow
https://notcve.org/view.php?id=CVE-2002-1570
30 Oct 2003 — Heap-based buffer overflow in snmpnetstat for ucd-snmp 4.2.3 and earlier, and net-snmp, allows remote attackers to execute arbitrary code via multiple getnextrequest PDU messages with conflicting ifindex variables, which cause snmpnetstat to write variable data past the end of an array. Desbordamiento de búfer basado en la pila in snmpnetstat en ucd-snmp 4.2.3 y anteriores y net-snmp, permita atacantes remotos ejecutar código arbitrario múltiples mensajes PDU getnextrequest con variables ifindex en conflict... • https://www.exploit-db.com/exploits/21200 •
CVSS: 7.5EPSS: 1%CPEs: 3EXPL: 0CVE-2002-1170
https://notcve.org/view.php?id=CVE-2002-1170
11 Oct 2002 — The handle_var_requests function in snmp_agent.c for the SNMP daemon in the Net-SNMP (formerly ucd-snmp) package 5.0.1 through 5.0.5 allows remote attackers to cause a denial of service (crash) via a NULL dereference. La función handle_var_requests en snmp_agent.c del demonio SNMP en el paquete Net-SNMP (antes ucd-snmp) 5.0.1, 5.0.3, y 5.0.4.pre2, permite a atacantes remotos causar una denegación de servicio (caida) mediante una desreferencia nula (NULL). • http://marc.info/?l=bugtraq&m=103359362020365&w=2 •
CVSS: 10.0EPSS: 54%CPEs: 1EXPL: 0CVE-2002-0012
https://notcve.org/view.php?id=CVE-2002-0012
13 Feb 2002 — Vulnerabilities in a large number of SNMP implementations allow remote attackers to cause a denial of service or gain privileges via SNMPv1 trap handling, as demonstrated by the PROTOS c06-SNMPv1 test suite. NOTE: It is highly likely that this candidate will be SPLIT into multiple candidates, one or more for each vendor. This and other SNMP-related candidates will be updated when more accurate information is available. Vulnerabilidades en un elevado número de implementaciones SNMP permite que atacantes remo... • ftp://patches.sgi.com/support/free/security/advisories/20020201-01-A • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 10.0EPSS: 63%CPEs: 1EXPL: 1CVE-2002-0013 – Cisco IOS 11/12 - SNMP Message Denial of Service
https://notcve.org/view.php?id=CVE-2002-0013
13 Feb 2002 — Vulnerabilities in the SNMPv1 request handling of a large number of SNMP implementations allow remote attackers to cause a denial of service or gain privileges via (1) GetRequest, (2) GetNextRequest, and (3) SetRequest messages, as demonstrated by the PROTOS c06-SNMPv1 test suite. NOTE: It is highly likely that this candidate will be SPLIT into multiple candidates, one or more for each vendor. This and other SNMP-related candidates will be updated when more accurate information is available. Vulnerabilidade... • https://www.exploit-db.com/exploits/21296 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 0CVE-1999-0472
https://notcve.org/view.php?id=CVE-1999-0472
07 Apr 1999 — The SNMP default community name "public" is not properly removed in NetApps C630 Netcache, even if the administrator tries to disable it. • https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0472 •