CVE-2002-0013

SNMP - Denial of Service or Privilege Escalation via SNMPv1 Request Handling

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2002-0013. PoCs published by kundera.

AI-analyzed exploit summary This exploit sends a malformed SNMPv1 get request to Cisco 2600 routers running IOS 12.0(10), causing a denial of service (DoS) by triggering a system reboot. It crafts a raw UDP packet with a spoofed source IP and a malformed SNMP payload.

Description

Vulnerabilities in the SNMPv1 request handling of a large number of SNMP implementations allow remote attackers to cause a denial of service or gain privileges via (1) GetRequest, (2) GetNextRequest, and (3) SetRequest messages, as demonstrated by the PROTOS c06-SNMPv1 test suite. NOTE: It is highly likely that this candidate will be SPLIT into multiple candidates, one or more for each vendor. This and other SNMP-related candidates will be updated when more accurate information is available.

Exploits (1)

exploitdb WORKING POC VERIFIED

by kundera · cdoshardware

https://www.exploit-db.com/exploits/21296

View Code ZIP pw:eip

This exploit sends a malformed SNMPv1 get request to Cisco 2600 routers running IOS 12.0(10), causing a denial of service (DoS) by triggering a system reboot. It crafts a raw UDP packet with a spoofed source IP and a malformed SNMP payload.

Classification

Working Poc 95%

Attack Type

Dos

Complexity

Moderate

Reliability

Reliable

Target: Cisco 2600 routers with IOS version 12.0(10)

No auth needed

Prerequisites: Network access to the target device · SNMP port (161/UDP) accessible

MITRE ATT&CK