CVE-2010-2891
CVE-2010-2891
Buffer overflow in the smiGetNode function in lib/smi.c in libsmi 0.4.8 allows context-dependent attackers to execute arbitrary code via an Object Identifier (aka OID) represented as a numerical string containing many components separated by . (dot) characters.
Produtos afetados
n/a · n/aPoCs públicas encontradas — 2
cve_referencewww.exploit-db.com/exploits/15293não verificadoexploitdbwww.exploit-db.com/exploits/15293não verificado⚠ Recursos públicos, para você avaliar a exposição de sistemas que controla ou está autorizado a testar. Teste apenas com autorização.
Quer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →Referências
http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00003.htmlhttp://lists.opensuse.org/opensuse-security-announce/2011-01/msg00006.htmlhttp://secunia.com/advisories/41841http://secunia.com/advisories/42877http://secunia.com/advisories/42902http://secunia.com/advisories/43068http://security-tracker.debian.org/tracker/CVE-2010-2891https://exchange.xforce.ibmcloud.com/vulnerabilities/62686http://www.coresecurity.com/content/libsmi-smigetnode-buffer-overflowhttp://www.debian.org/security/2011/dsa-2145http://www.exploit-db.com/exploits/15293http://www.mandriva.com/security/advisories?name=MDVSA-2010:209