8 matches found
SuSE9 Security Update : nagios-www (YOU Patch Number 10984)
An integer overflow exists within the handling of HTTP headers by CGIs. This could lead to arbitrary code execution by remote attackers on behalf of the Nagios CGI scripts. CVE-2006-2162 has been assigned to this issue. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of...
Gentoo Security Advisory GLSA 200605-07 (nagios)
The remote host is missing updates announced in advisory GLSA 200605-07. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
Gentoo Security Advisory GLSA 200605-07 (nagios)
The remote host is missing updates announced in advisory GLSA 200605-07. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian DSA-1072-1 : nagios - buffer overflow
A buffer overflow has been discovered in nagios, a host, service and network monitoring and management system, that could be exploited by remote attackers to execute arbitrary code. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were...
[SECURITY] [DSA 1072-1] New Nagios packages fix arbitrary code execution
-------------------------------------------------------------------------- Debian Security Advisory DSA 1072-1 [email protected] http://www.debian.org/security/ Martin Schulze May 22nd, 2006 http://www.debian.org/security/faq -...
[SECURITY] [DSA 1072-1] New Nagios packages fix arbitrary code execution
-------------------------------------------------------------------------- Debian Security Advisory DSA 1072-1 [email protected] http://www.debian.org/security/ Martin Schulze May 22nd, 2006 http://www.debian.org/security/faq -...
CVE-2006-2489
CVE-2006-2489 describes an integer overflow in Nagios CGI scripts triggered by a crafted HTTP Content-Length header. Affects Nagios 1.x before 1.4.1 and 2.x before 2.3.1, allowing remote attackers to cause a crash (DoS) and potentially execute arbitrary code. Connections in related documents indi...
CVE-2006-2162
Nagios CGI buffer/integer overflow vulnerability (CVE-2006-2162) affects Nagios 1.x before 1.4 and 2.x before 2.3, caused by improper handling of HTTP headers (Content-Length), enabling remote code execution. Public references describe the issue as an overflow in CGI header handling, with advisor...