Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-0250

Overview

Vulnerability Score 6.4 6.4
CVE Id CVE-2006-0250
Last Modified 07 Mar 2011 09:29:39
Published 17 Jan 2006 08:51:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2006-0250

Summary

Format string vulnerability in the snmp_input function in snmptrapd in CMU SNMP utilities (cmu-snmp) allows remote attackers to execute arbitrary code by sending crafted SNMP messages to UDP port 162.

Vulnerable Systems

Application

  • Carnegie Mellon University Snmptrapd 3.6

  • Carnegie Mellon University Snmptrapd 3.7


References

VUPEN - ADV-2006-0234

BID - 16267

BUGTRAQ - 20060116 Digital Armaments Security Advisory 01.16.2006: CMU SNMP utilities snmptrad Format String Vulnerability

MISC - http://www.digitalarmaments.com/2006040164883273.html

SECUNIA - 18525

XF - cmusnmp-snmpinput-format-string(24178)

OSVDB - 22493


Last Updated: 27 May 2016 10:41:35