CVE-2006-0250 : Format string vulnerability in the snmp_input function in snmptrapd in CMU SNMP utilities (cmu-snmp) allows remote attac

Format string vulnerability in the snmp_input function in snmptrapd in CMU SNMP utilities (cmu-snmp) allows remote attackers to execute arbitrary code by sending crafted SNMP messages to UDP port 162.

Published 2006-01-18 01:51:00

Updated 2018-10-19 15:43:30

Source MITRE

View at NVD, CVE.org

Vulnerability category: Execute code

Exploit prediction scoring system (EPSS) score for CVE-2006-0250

Probability of exploitation activity in the next 30 days: 13.20%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 95 % EPSS Score History EPSS FAQ

CVSS scores for CVE-2006-0250

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
6.4	MEDIUM	AV:N/AC:L/Au:N/C:N/I:P/A:P	10.0	4.9	NIST
Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: None Integrity Impact: Partial Availability Impact: Partial

References for CVE-2006-0250

Products affected by CVE-2006-0250

Carnegie Mellon University » Snmptrapd » Version: 3.6
cpe:2.3:a:carnegie_mellon_university:snmptrapd:3.6:*:*:*:*:*:*:*
Matching versions
Carnegie Mellon University » Snmptrapd » Version: 3.7
cpe:2.3:a:carnegie_mellon_university:snmptrapd:3.7:*:*:*:*:*:*:*
Matching versions

Vulnerability Details : CVE-2006-0250

Exploit prediction scoring system (EPSS) score for CVE-2006-0250

CVSS scores for CVE-2006-0250

References for CVE-2006-0250

Products affected by CVE-2006-0250