VDB
CVE-2008-2292
CVE-2008-2292
PUBLISHED
CVSS 6.800000190734863 MEDIUM
Buffer overflow in the __snprint_value function in snmp_get in Net-SNMP 5.1.4, 5.2.4, and 5.4.1, as used in SNMP.xs for Perl, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a large OCTETSTRING in an attribute value pair (AVP).
EPSS 26.55% · 96.4th percentile
Risk Scores
CVSS 2.0
6.800000190734863
EPSS Score
26.55%
96.4th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| n/a | n/a | n/a |
| net-snmp | net-snmp | 5.1.4, 5.2.4, 5.4.1 |
Exploit Intelligence
- CIRCL confirmed: CVE-2008-2292 (circl-sighting)
- 31467 (circl)
- DSA-1663 (circl)
- SUSE-SA:2008:039 (circl)
- 30187 (circl)
- 31351 (circl)
- http://support.avaya.com/elmodocs2/security/ASA-2008-282.htm (circl)
- http://sourceforge.net/tracker/index.php?func=detail&aid=1826174&group_id=12694&atid=112694 (circl)
- FEDORA-2008-5215 (circl)
- 239785 (circl)
…and 23 more exploits
Timeline
- May 18, 2008 CVE Published
- Nov 12, 2008 PoC Published
- Nov 12, 2008 PoC Published
- Feb 4, 2022 EPSS Score
- May 20, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Oct 27, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 3, 2023 EPSS Score
- Jun 1, 2023 EPSS Score
- Jul 17, 2023 EPSS Score
References
- 1020527 vdb
- 30615 third-party-advisory
- 32664 third-party-advisory
- SUSE-SA:2008:039 vendor-advisory
- 30187 third-party-advisory
- 31351 third-party-advisory
- http://support.avaya.com/elmodocs2/security/ASA-2008-282.htm url
- http://sourceforge.net/tracker/index.php?func=detail&aid=1826174&group_id=12694&atid=112694 url
- FEDORA-2008-5215 vendor-advisory
- 31334 third-party-advisory
- ADV-2008-2141 vdb
- 30647 third-party-advisory
- 29212 vdb
- 33003 third-party-advisory
- ADV-2008-2361 vdb
- 31568 third-party-advisory
- 31467 third-party-advisory
- 239785 vendor-advisory
- DSA-1663 vendor-advisory
- RHSA-2008:0529 vendor-advisory
…and 11 more