The vulnerabilities of the Xymon network monitoring software allow a intruder to trigger a service failure or execute arbitrary code.

🗓️ 05 May 2016 00:00:00Reported by FSTEC of Russia — Information Security Threat DatabaseType

bdu_fstec

bdu_fstec🔗 bdu.fstec.ru👁 1 Views

Xymon vulnerabilities enable remote code execution or crash via buffer overflow in xymond.c.

Reporter	Title	Published	Views	Family All 26
FreeBSD	xymon-server -- multiple vulnerabilities	19 Jan 201600:00	–	freebsd
CNVD	Xymon Buffer Overflow Vulnerability	24 Feb 201600:00	–	cnvd
CVE	CVE-2016-2054	13 Apr 201616:00	–	cve
Cvelist	CVE-2016-2054	13 Apr 201616:00	–	cvelist
Debian	[SECURITY] [DLA 488-1] xymon security update	25 May 201617:10	–	debian
Debian	[SECURITY] [DSA 3495-1] xymon security update	29 Feb 201610:15	–	debian
Debian	[SECURITY] [DSA 3495-1] xymon security update	29 Feb 201610:15	–	debian
Debian CVE	CVE-2016-2054	13 Apr 201616:00	–	debiancve
Tenable Nessus	Debian DLA-488-1 : xymon security update	26 May 201600:00	–	nessus
Tenable Nessus	Debian DSA-3495-1 : xymon - security update	1 Mar 201600:00	–	nessus

Source	Link
sourceforge	www.sourceforge.net/p/xymon/code/7860/
sourceforge	www.sourceforge.net/p/xymon/code/7859/
securityfocus	www.securityfocus.com/archive/1/archive/1/537522/100/0/threaded
debian	www.debian.org/security/2016/dsa-3495
packetstormsecurity	www.packetstormsecurity.com/files/135758/Xymon-4.3.x-Buffer-Overflow-Code-Execution-Information-Disclosure.html
lists	www.lists.xymon.com/archive/2016-February/042986.html
xn--80ahaefyxhn	www.xn--80ahaefyxhn.xn--j1afgaq.xn--p1ai/bin/view/%D0%9E%D0%A1%D0%BD%D0%BE%D0%B2%D0%B0/%D0%9E%D0%B1%D0%BD%D0%BE%D0%B2%D0%BB%D0%B5%D0%BD%D0%B8%D1%8F/2.8/
web	www.web.nvd.nist.gov/view/vuln/detail
debian	www.debian.org/security/dsa-3495/
securityfocus	www.securityfocus.com/bid/20160214

13 Sep 2023 00:00Current

CVSS 27.5

EPSS0.05456

xymon remote code execution buffer overflow xymond.c long file names