11 matches found
Gentoo Security Advisory GLSA 200907-15 (nagios-core)
The remote host is missing updates announced in advisory GLSA 200907-15. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
openSUSE Security Update : nagios (nagios-531)
A CSRF bug in nagios' cmd.cgi CVE-2008-5028 has been fixed as well as an authentication bypass CVE-2008-5027. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update nagios-531. The text description o...
Ubuntu USN-698-3 (nagios2)
The remote host is missing an update to nagios2 announced via advisory USN-698-3. OpenVAS Vulnerability Test $Id: ubuntu6983.nasl 7969 2017-12-01 09:23:16Z santu $ $Id: ubuntu6983.nasl 7969 2017-12-01 09:23:16Z santu $ Description: Auto-generated from advisory USN-698-3 nagios2 Authors: Thomas...
Ubuntu 8.04 LTS : nagios2 vulnerabilities (USN-698-3)
It was discovered that Nagios was vulnerable to a Cross-site request forgery CSRF vulnerability. If an authenticated nagios user were tricked into clicking a link on a specially crafted web page, an attacker could trigger commands to be processed by Nagios and execute arbitrary programs. This...
Ubuntu USN-698-2 (nagios3)
The remote host is missing an update to nagios3 announced via advisory USN-698-2. OpenVAS Vulnerability Test $Id: ubuntu6982.nasl 7969 2017-12-01 09:23:16Z santu $ Description: Auto-generated from advisory USN-698-2 nagios3 Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...
Ubuntu: Security Advisory (USN-698-2)
The remote host is missing an update for the SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
USN-698-3: Nagios vulnerabilities
It was discovered that Nagios was vulnerable to a Cross-site request forgery CSRF vulnerability. If an authenticated nagios user were tricked into clicking a link on a specially crafted web page, an attacker could trigger commands to be processed by Nagios and execute arbitrary programs. This...
[Backports-security-announce] Security Update for nagios3
Jan Wagner uploaded a new package for nagios3 which fixed the following security problem: CVE-2008-5028, SA32610 and Debian Bug 504894 Andreas Ericsson has discovered a vulnerability in Nagios, which can be exploited by malicious people to conduct cross-site request forgery attacks. The applicati...
[Backports-security-announce] Security Update for nagios3
Jan Wagner uploaded a new package for nagios3 which fixed the following security problem: CVE-2008-5028, SA32610 and Debian Bug 504894 Andreas Ericsson has discovered a vulnerability in Nagios, which can be exploited by malicious people to conduct cross-site request forgery attacks. The applicati...
CVE-2008-5028
Cross-site request forgery CSRF vulnerability in cmd.cgi in 1 Nagios 3.0.5 and 2 op5 Monitor before 4.0.1 allows remote attackers to send commands to the Nagios process, and trigger execution of arbitrary programs by this process, via unspecified HTTP requests...
CVE-2008-5028
Cross-site request forgery CSRF vulnerability in cmd.cgi in 1 Nagios 3.0.5 and 2 op5 Monitor before 4.0.1 allows remote attackers to send commands to the Nagios process, and trigger execution of arbitrary programs by this process, via unspecified HTTP requests...