CVE-2010-2891

EPSS 32.6%

libsmi - buffer overflow

Published: 10/28/2010Modified: 4/28/2026

Description

Buffer overflow in the smiGetNode function in lib/smi.c in libsmi 0.4.8 allows context-dependent attackers to execute arbitrary code via an Object Identifier (aka OID) represented as a numerical string containing many components separated by . (dot) characters.

Affected packages (2)

Debian/libsmifrom 0, < 0.4.8+dfsg2-3
Debian/libsmifrom 0, < 0.4.7+dfsg-0.2

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2010-2891