CVE-2002-1570

Name of the Vulnerable Software and Affected Versions ucd-snmp version 4.2.3 and earlier net-snmp (affected versions not specified)

Description The issue allows remote attackers to execute arbitrary code via multiple getnextrequest PDU messages with conflicting ifindex variables. This causes the software to write variable data past the end of an array, resulting in a heap-based buffer overflow.

Recommendations For ucd-snmp version 4.2.3 and earlier, update to a version later than 4.2.3 to resolve the issue. For net-snmp, at the moment, there is no information about a newer version that contains a fix for this vulnerability.