cpe:/a:tu-braunschweig:libsmi:0.4.8 CVE-2010-2891 2010-10-27T20:00:02.313-04:00 2017-08-16T21:32:51.007-04:00 7.5 NETWORK LOW NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2010-10-28T11:52:00.000-04:00 EXPLOIT-DB 15293 BUGTRAQ 20101020 [CORE-2010-0819] LibSMI smiGetNode Buffer Overflow When Long OID Is Given In Numerical Form SECUNIA 41841 SECUNIA 42877 SECUNIA 42902 SECUNIA 43068 BID 44276 VUPEN ADV-2010-2764 VUPEN ADV-2011-0076 VUPEN ADV-2011-0111 VUPEN ADV-2011-0212 DEBIAN DSA-2145 MANDRIVA MDVSA-2010:209 SUSE SUSE-SR:2011:001 SUSE SUSE-SR:2011:002 CONFIRM http://security-tracker.debian.org/tracker/CVE-2010-2891 MISC http://www.coresecurity.com/content/libsmi-smigetnode-buffer-overflow XF libsmi-smigetnode-bo(62686) Buffer overflow in the smiGetNode function in lib/smi.c in libsmi 0.4.8 allows context-dependent attackers to execute arbitrary code via an Object Identifier (aka OID) represented as a numerical string containing many components separated by . (dot) characters.