4 matches found
Updated nagstamon package fixes security vulnerability
A user details information exposure flaw was found in the way Nagstamon performed automated requests to get information about available updates. Remote attackers could use this flaw to obtain user credentials for servers monitored by the desktop status monitor due to their improper base64...
CVE-2013-4114
Nagstamon contains an information disclosure in the automatic update request: credentials are transmitted using cleartext base64 over HTTP, allowing a network attacker to sniff usernames/passwords. Affected versions are prior to the patched releases cited in connected advisories. OpenSUSE/OpenSUS...
CVE-2013-4114
The automatic update request in Nagstamont before 0.9.10 uses a cleartext base64 format for transmission of a username and password, which allows remote attackers to obtain sensitive information by sniffing the network...
Fedora Update for nagstamon FEDORA-2013-12541
The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...