CVE-2004-1897

2005-05-1004:00:00

mitre

www.cve.org

6.7 Medium

AI Score

Confidence

High

0.061 Low

EPSS

Percentile

93.5%

JSON

Administration interface in Monit 1.4 through 4.2 allows remote attackers to cause a denial of service (segmentation fault) by sending a Basic Authentication request without a password, which causes Monit to decrement a null pointer and perform an out-of-bounds read.

References

marc.info/?l=bugtraq&m=108119149103696&w=2

secunia.com/advisories/11304

www.securityfocus.com/bid/10051

www.tildeslash.com/monit/changes.html

www.tildeslash.com/monit/secadv_20040305.txt

exchange.xforce.ibmcloud.com/vulnerabilities/15734