CVE-2010-2891
CVE-2010-2891
Buffer overflow in the smiGetNode function in lib/smi.c in libsmi 0.4.8 allows context-dependent attackers to execute arbitrary code via an Object Identifier (aka OID) represented as a numerical string containing many components separated by . (dot) characters.
Productos afectados
n/a · n/aPoCs públicas encontradas — 2
cve_referencewww.exploit-db.com/exploits/15293no verificadoexploitdbwww.exploit-db.com/exploits/15293no verificado⚠ Recursos públicos, para evaluar la exposición de sistemas que controlas o estás autorizado a probar. Prueba solo con autorización.
¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →Referencias
http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00003.htmlhttp://lists.opensuse.org/opensuse-security-announce/2011-01/msg00006.htmlhttp://secunia.com/advisories/41841http://secunia.com/advisories/42877http://secunia.com/advisories/42902http://secunia.com/advisories/43068http://security-tracker.debian.org/tracker/CVE-2010-2891https://exchange.xforce.ibmcloud.com/vulnerabilities/62686http://www.coresecurity.com/content/libsmi-smigetnode-buffer-overflowhttp://www.debian.org/security/2011/dsa-2145http://www.exploit-db.com/exploits/15293http://www.mandriva.com/security/advisories?name=MDVSA-2010:209