The vulnerability of the Xymon network monitoring software allows a intruder to execute arbitrary commands.

The vulnerability of the xymond network monitoring software component is related to the lack of measures for cleaning input data. Exploiting this vulnerability allows a malicious actor to execute arbitrary commands using metasymbols in the addusername argument in web/useradm.c or web/chpasswd.c...

UBUNTU-CVE-2016-2056

xymond in Xymon 4.1.x, 4.2.x, and 4.3.x before 4.3.25 allow remote authenticated users to execute arbitrary commands via shell metacharacters in the addusername argument in 1 web/useradm.c or 2 web/chpasswd.c...