CVE-2005-1246

snmppd <0.4.5 - RCE

Title source: llm

Description

Format string vulnerability in the snmppd_log function in snmppd_util.c for snmppd 0.4.5 and earlier may allow remote attackers to cause a denial of service or execute arbitrary code via format string specifiers that are not properly handled in a syslog call.

Exploits (1)

exploitdb WORKING POC VERIFIED

by cybertronic · cremotelinux

https://www.exploit-db.com/exploits/970

View Code ZIP pw:eip

References (3)

[Exploit, Patch] http://archives.neohapsis.com/archives/vulnwatch/2005-q2/0022.html

[Third Party Advisory] http://secunia.com/advisories/15120

[Exploit, Patch] http://x82.inetcop.org/h0me/adv1sor1es/INCSA.2005-0x82-027-SNMPPD.txt

Scores

EPSS 0.1424

EPSS Percentile 94.4%

Details

Status published

Products (7)

vladislav_bogdanov/snmppd 0.4

vladislav_bogdanov/snmppd 0.4.1

vladislav_bogdanov/snmppd 0.4.2

vladislav_bogdanov/snmppd 0.4.3

vladislav_bogdanov/snmppd 0.4.3_special

vladislav_bogdanov/snmppd 0.4.4

vladislav_bogdanov/snmppd 0.4.5

Published Apr 24, 2005

Tracked Since Feb 18, 2026