CVE-2002-1170

Published: Oct 11, 2002Modified: Apr 16, 2026

5.0

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:P

Exploitability: 10.0 / Impact: 2.9

Source: NVD

Description

The handle_var_requests function in snmp_agent.c for the SNMP daemon in the Net-SNMP (formerly ucd-snmp) package 5.0.1 through 5.0.5 allows remote attackers to cause a denial of service (crash) via a NULL dereference.

Affected (3)

Products: Net Snmp: Net Snmp

Net Snmp

1 product

Net Snmp

Configuration A

3 vulnerable

Vulnerable Software	Affected Versions
Net Snmp Net Snmp	Version 5.0.1
Net Snmp Net Snmp	Version 5.0.3
Net Snmp Net Snmp	Version 5.0.4_pre2

References (12)

http://marc.info/?l=bugtraq&m=103359362020365&w=2

Source: cve@mitre.org

http://sourceforge.net/forum/forum.php?forum_id=216532

Source: cve@mitre.org

http://www.idefense.com/advisory/10.02.02.txt

Source: cve@mitre.org

http://www.redhat.com/support/errata/RHSA-2002-228.html

Source: cve@mitre.org

http://www.securityfocus.com/bid/5862

Source: cve@mitre.org

PatchVendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/10250

Source: cve@mitre.org

http://marc.info/?l=bugtraq&m=103359362020365&w=2