FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

snmptt -- malicious shell code

Affected packages
snmptt < 1.4.2

Details

VuXML ID b8ea5b66-deff-11ea-adef-641c67a117d8
Discovery 2020-07-23
Entry 2020-08-15

Snmptt reports:

Fixed a security issue with EXEC / PREXEC / unknown_trap_exec that could allow malicious shell code to be executed.

Fixed a bug with EXEC / PREXEC / unknown_trap_exec that caused commands to be run as root instead of the user defined in daemon_uid.

References

FreeBSD PR ports/248162
URL http://snmptt.sourceforge.net/changelog.shtml