Lucene search

K

MitreCVELIST:CVE-2006-2489

HistoryMay 19, 2006 - 11:00 p.m.

CVE-2006-2489

2006-05-1923:00:00

mitre

www.cve.org

7.6 High

AI Score

Confidence

Low

0.109 Low

EPSS

Percentile

95.1%

Integer overflow in CGI scripts in Nagios 1.x before 1.4.1 and 2.x before 2.3.1 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a content length (Content-Length) HTTP header. NOTE: this is a different vulnerability than CVE-2006-2162.

References

secunia.com/advisories/20123

secunia.com/advisories/20247

secunia.com/advisories/20313

www.debian.org/security/2006/dsa-1072

www.gentoo.org/security/en/glsa/glsa-200605-07.xml

www.nagios.org/development/changelog.php

www.securityfocus.com/bid/18059

www.vupen.com/english/advisories/2006/1822

exchange.xforce.ibmcloud.com/vulnerabilities/26454

usn.ubuntu.com/287-1/

7.6 High

AI Score

Confidence

Low

0.109 Low

EPSS

Percentile

95.1%

Related for CVELIST:CVE-2006-2489

nessus6 nvd2 cve2 prion2 debian2 osv1 openvas4 gentoo1 ubuntucve2 ubuntu2 checkpoint_advisories1 cvelist1 securityvulns1