5 matches found
CVE-2013-4173
Directory traversal vulnerability in the trend-data daemon xymondrrd in Xymon 4.x before 4.3.12 allows remote attackers to delete arbitrary files via a .. dot dot in the host name in a "drophost" command...
CVE-2013-4173
Directory traversal vulnerability in the trend-data daemon xymondrrd in Xymon 4.x before 4.3.12 allows remote attackers to delete arbitrary files via a .. dot dot in the host name in a "drophost" command...
CVE-2013-4173
Directory traversal vulnerability in the trend-data daemon xymondrrd in Xymon 4.x before 4.3.12 allows remote attackers to delete arbitrary files via a .. dot dot in the host name in a "drophost" command...
[ MDVSA-2013:213 ] xymon
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2013:213 http://www.mandriva.com/en/support/security/ Package : xymon Date : August 13, 2013 Affected: Business Server 1.0 Problem Description: Updated xymon package fixes security vulnerability: A security...
MGASA-2013-0243 Updated xymon package fixes security vulnerability.
A security vulnerability has been found in version 4.x of the Xymon Systems & Network Monitor tool The error permits a remote attacker to delete files on the server running the Xymon trend-data daemon "xymondrrd". File deletion is done with the privileges of the user that Xymon is running with, s...