Vulnerability Report

CVE-2006-0250

RCE

Title: Carnegie Mellon University Snmptrapd RCE

RCE

Proof Of Concept

No public PoC currently indexed for CVE-2006-0250.

CWE Category NVD-CWE-noinfo

Published Date Jan 18, 2006

Modified Date Apr 03, 2025

Exploit Status Not Found

Score 6.4 CVSS v2.0

Exploit Probability (EPSS)

3.29%

Vulnerability Summary

CVE-2006-0250: Format string vulnerability in the snmp_input function in snmptrapd in CMU SNMP utilities (cmu-snmp) allows remote attackers to execute arbitrary code by sending crafted SNMP messages to UDP port 162.

Impacted Vendors

carnegie_mellon_university 1

Reference Links

http://secunia.com/advisories/18525 http://www.digitalarmaments.com/2006040164883273.html http://www.osvdb.org/22493 http://www.securityfocus.com/archive/1/422086/100/0/threaded http://www.securityfocus.com/bid/16267 http://www.vupen.com/english/advisories/2006/0234 https://exchange.xforce.ibmcloud.com/vulnerabilities/24178 http://secunia.com/advisories/18525 http://www.digitalarmaments.com/2006040164883273.html http://www.osvdb.org/22493 http://www.securityfocus.com/archive/1/422086/100/0/threaded http://www.securityfocus.com/bid/16267 http://www.vupen.com/english/advisories/2006/0234 https://exchange.xforce.ibmcloud.com/vulnerabilities/24178

CVSS v2.0

Source Entity [email protected]

Severity MEDIUM

6.4

Access Vector

N/A

Authentication

N/A

RAW VECTOR AV:N/AC:L/Au:N/C:N/I:P/A:P

Associated Attack Patterns (CAPEC)

Total: Patterns

CVE-2006-0250 Exploits & PoCs (Proof Of Concept)

No public PoCs found in our database for this CVE.

April 03, 2025 MODIFIED

Vulnerability data or affected products updated.

January 18, 2006 PUBLISHED

Vulnerability first announced in NVD.

Attack Vector Matrix

Access Vector N/A

Complexity N/A

Privileges N/A

Interaction NONE

CVSS Vector String


                                    AV:N/AC:L/Au:N/C:N/I:P/A:P

Affected Stack

No specific products linked.