magnusstubman

2 exploits Active since Aug 2015
CVE-2015-5621 EXPLOITDB HIGH text WORKING POC
net-snmp < 5.7.2 - Denial of Service and Possible Remote Code Execution via Crafted SNMP PDU
The snmp_pdu_parse function in snmp_api.c in net-snmp 5.7.2 and earlier does not remove the varBind variable in a netsnmp_variable_list item when parsing of the SNMP PDU fails, which allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted packet.
CVSS 7.5
CVE-2018-18065 EXPLOITDB MEDIUM text WORKING POC
Net-SNMP < 5.8 - Authenticated Denial of Service via Crafted UDP Packet
_set_key in agent/helpers/table_container.c in Net-SNMP before 5.8 has a NULL Pointer Exception bug that can be used by an authenticated attacker to remotely cause the instance to crash via a crafted UDP packet, resulting in Denial of Service.
CVSS 6.5