5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
A stack-based buffer overflow in the cmd_submitf function in cgi/cmd.c
in Nagios, a monitoring and management system for hosts, services and
networks, allowed remote attackers to cause a denial of service
(segmentation fault) via a long message to cmd.cgi.
For Debian 7 Wheezy, this problem has been fixed in version
3.4.1-3+deb7u2.
We recommend that you upgrade your nagios3 packages.
CPE | Name | Operator | Version |
---|---|---|---|
nagios3 | eq | 3.4.1-3+deb7u1 | |
nagios3 | eq | 3.4.1-3 |