The perl_trapd_handler function in perl/TrapReceiver/TrapReceiver.xs in Net-SNMP 5.7.3.pre3 and previous versions, when using certain Perl versions, allows remote malicious users to cause a denial of service (snmptrapd crash) via an empty community string in an SNMP trap, which triggers a NULL pointer dereference within the newSVpv function in Perl.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
net-snmp net-snmp |