HIGH🇬🇧 English

CVE-2005-4837

CVSS 10.0v2.0pub. 2005-12-31upd. 2026-04-16

snmp_api.c in snmpd in Net-SNMP 5.2.x before 5.2.2, 5.1.x before 5.1.3, and 5.0.x before 5.0.10.2, when running in master agentx mode, allows remote attackers to cause a denial of service (crash) by causing a particular TCP disconnect, which triggers a free of an incorrect variable, a different vulnerability than CVE-2005-2177.

oryginał EN
CVSS Vector
AV:N/AC:L/Au:N/C:C/I:C/A:C
  • Net Snmp

    APP
    Net-Snmp
    5.05.0.15.0.105.0.25.0.35.0.4_pre25.0.55.0.65.0.75.0.85.0.9
  • Sourceforge Net Snmp

    APP
    Sourceforge
    ≤ 5.0.9≤ 5.1.2≤ 5.2.1.2
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
Tagi
DoS
CWE
Referencje

Powiązane podatności

CVE-2025-68615CRITICAL9.8PL ✓ten sam produkt

Buffer overflow w demonie snmptrapd biblioteki net-snmp

CVE-2018-1000116CRITICAL9.8ten sam produkt

NET-SNMP version 5.7.2 contains a heap corruption vulnerability in the UDP protocol handler that can result in...

CVE-2020-15862HIGH7.8ten sam produkt

Net-SNMP through 5.8 has Improper Privilege Management because SNMP WRITE access to the EXTEND MIB provides th...

CVE-2020-15861HIGH7.8ten sam produkt

Net-SNMP through 5.7.3 allows Escalation of Privileges because of UNIX symbolic link (symlink) following.

CVE-2018-18066HIGH7.5ten sam produkt

snmp_oid_compare in snmplib/snmp_api.c in Net-SNMP before 5.8 has a NULL Pointer Exception bug that can be use...