CVE-2002-1170
EPSS 1.3%
Description
The handle_var_requests function in snmp_agent.c for the SNMP daemon in the Net-SNMP (formerly ucd-snmp) package 5.0.1 through 5.0.5 allows remote attackers to cause a denial of service (crash) via a NULL dereference.
How to fix CVE-2002-1170
To remediate CVE-2002-1170, upgrade the affected package to a fixed version below.
- Debian/net-snmp—upgrade to 5.0.6 or later
Is CVE-2002-1170 being exploited?
Low — EPSS is 1.3%, meaning exploitation activity has not been observed at scale.
Affected packages (1)
- from 0, < 5.0.6