6 matches found
[SECURITY] [DLA 488-1] xymon security update
Package : xymon Version : 4.3.0beta2.dfsg-9.1+deb7u1 CVE ID : CVE-2016-2054 CVE-2016-2055 CVE-2016-2056 CVE-2016-2058 Markus Krell discovered that Xymon formerly known as Hobbit, a network- and applications-monitoring system, was vulnerable to the following security issues: CVE-2016-2054 The...
CVE-2016-2054
Multiple buffer overflows in xymond/xymond.c in xymond in Xymon 4.1.x, 4.2.x, and 4.3.x before 4.3.25 allow remote attackers to execute arbitrary code or cause a denial of service daemon crash via a long filename, involving handling a "config" command...
CVE-2016-2054
Xymon (formerly Hobbit) is affected by CVE-2016-2054 and related CVEs in 4.1.x–4.3.x prior to 4.3.25. The issue arises from improper handling of user-supplied input in the config command, which can trigger a stack-based buffer overflow via a long filename, enabling remote code execution or a deni...
Debian DSA-3495-1 : xymon - security update
Markus Krell discovered that xymon, a network- and applications-monitoring system, was vulnerable to the following security issues : - CVE-2016-2054 The incorrect handling of user-supplied input in the 'config' command can trigger a stack-based buffer overflow, resulting in denial of service via...
[SECURITY] [DSA 3495-1] xymon security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3495-1 [email protected] https://www.debian.org/security/ Sebastien Delafond February 29, 2016 https://www.debian.org/security/faq -...
Xymon 4.3.x Buffer Overflow / Code Execution / Information Disclosure
Hi, Multiple security issues have been found in the server component of the Xymon monitoring system. These issues affect all versions of Xymon 4.3.x prior to 4.3.25, as well as the obsolete 4.1.x and 4.2.x versions. All issues have been resolved in Xymon 4.3.25, released on Feb 8 2016. It is...