Xymon Daemon Gather Information

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Xymon Daemon Gather Information', 'Description' = %q This module retrieves information from a Xymon daemon service formerly Hobbit, based on Big...

CVE-2016-2055

creationtimestamp| type| source ---|---|--- 2019-08-15 15:37:42+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/gather/xymoninfo.rb 2025-02-06 03:13:42+00:00| seen| MISP/a1e796df-2ad8-4c8d-8b69-737a004e72dd 2025-02-23 04:09:46+00:00| seen|...

Xymon Daemon Gather Information

This module retrieves information from a Xymon daemon service formerly Hobbit, based on Big Brother, including server configuration information, a list of monitored hosts, and associated client log for each host. This module also retrieves usernames and password hashes from the xymonpasswd config...

[SECURITY] [DLA 488-1] xymon security update

Package : xymon Version : 4.3.0beta2.dfsg-9.1+deb7u1 CVE ID : CVE-2016-2054 CVE-2016-2055 CVE-2016-2056 CVE-2016-2058 Markus Krell discovered that Xymon formerly known as Hobbit, a network- and applications-monitoring system, was vulnerable to the following security issues: CVE-2016-2054 The...

CVE-2016-2055

xymond/xymond.c in xymond in Xymon 4.1.x, 4.2.x, and 4.3.x before 4.3.25 allow remote attackers to read arbitrary files in the configuration directory via a "config" command...

CVE-2016-2055

xymond/xymond.c in xymond in Xymon 4.1.x, 4.2.x, and 4.3.x before 4.3.25 allow remote attackers to read arbitrary files in the configuration directory via a "config" command...

CVE-2016-2055

CVE-2016-2055 affects Xymon (formerly Hobbit) 4.1.x–4.3.x prior to 4.3.25. The vulnerability arises from improper handling of user-supplied input in the config command, allowing remote attackers to read arbitrary files in the configuration directory (information disclosure). Multiple connected so...

Debian DSA-3495-1 : xymon - security update

Markus Krell discovered that xymon, a network- and applications-monitoring system, was vulnerable to the following security issues : - CVE-2016-2054 The incorrect handling of user-supplied input in the 'config' command can trigger a stack-based buffer overflow, resulting in denial of service via...

[SECURITY] [DSA 3495-1] xymon security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3495-1 [email protected] https://www.debian.org/security/ Sebastien Delafond February 29, 2016 https://www.debian.org/security/faq -...

Xymon 4.3.x Buffer Overflow / Code Execution / Information Disclosure

Hi, Multiple security issues have been found in the server component of the Xymon monitoring system. These issues affect all versions of Xymon 4.3.x prior to 4.3.25, as well as the obsolete 4.1.x and 4.2.x versions. All issues have been resolved in Xymon 4.3.25, released on Feb 8 2016. It is...