16 matches found
GLSA-202007-31 : Icinga: Root privilege escalation
The remote host is affected by the vulnerability described in GLSA-202007-31 Icinga: Root privilege escalation It was discovered that Icingas installed files have insecure permissions, possibly allowing root privilege escalation. Impact : A local attacker could escalate privileges to root...
GLSA-202007-03 : Cacti: Multiple vulnerabilities
The remote host is affected by the vulnerability described in GLSA-202007-03 Cacti: Multiple vulnerabilities Multiple vulnerabilities have been discovered in Cacti. Please review the CVE identifiers referenced below for details. Impact : Please review the referenced CVE identifiers for details...
PNP4Nagios: Root privilege escalation
Background PNP4Nagios is an addon for the Nagios Network Monitoring System. Description It was found that PHP4Nagios creates files owned by an unprivileged user that are used by root. Impact A local attacker could escalate privileges to root. Workaround There is no known workaround at this time...
Cacti: Multiple vulnerabilities
Background Cacti is a complete frontend to rrdtool Description Multiple vulnerabilities have been discovered in cacti. Please review the CVE identifiers referenced below for details. Impact A remote attacker could possibly execute arbitrary code with the privileges of the process, or cause a Deni...
GLSA-201401-20 : Cacti: Multiple vulnerabilities
The remote host is affected by the vulnerability described in GLSA-201401-20 Cacti: Multiple vulnerabilities Multiple vulnerabilities have been discovered in Cacti. Please review the CVE identifiers referenced below for details. Impact : A remote attacker could execute arbitrary SQL commands via...
TPTEST: Arbitrary code execution
Background TPTEST is a tool to measure the speed of a user’s Internet connection. Description The GetStatsFromLine function in TPTEST is vulnerable to buffer overflows from STATS lines with long email and pwd fields. Impact A remote attacker could send a specially-crafted STATS line, possibly...
Gentoo Security Advisory GLSA 200907-15 (nagios-core)
The remote host is missing updates announced in advisory GLSA 200907-15. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR GPL-3.0-only...
Gentoo Security Advisory GLSA 200812-12 (honeyd)
The remote host is missing updates announced in advisory GLSA 200812-12. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
Gentoo Security Advisory GLSA 200503-16 (ethereal)
The remote host is missing updates announced in advisory GLSA 200503-16. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
Gentoo Security Advisory GLSA 200701-23 (cacti)
The remote host is missing updates announced in advisory GLSA 200701-23. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
Gentoo Security Advisory GLSA 200605-07 (nagios)
The remote host is missing updates announced in advisory GLSA 200605-07. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
Gentoo Security Advisory GLSA 200711-11 (nagios-plugins)
The remote host is missing updates announced in advisory GLSA 200711-11. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Gentoo Security Advisory GLSA 200604-07 (Cacti)
The remote host is missing updates announced in advisory GLSA 200604-07. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
Gentoo Security Advisory GLSA 200803-21 (sarg)
The remote host is missing updates announced in advisory GLSA 200803-21. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
Cacti: SQL injection
Background Cacti is a complete web-based frontend to rrdtool. Description It has been reported that the "localgraphid" variable used in the file graph.php is not properly sanitized before being processed in an SQL statement. Impact A remote attacker could send a specially crafted request to the...
Nagios: Buffer overflow
Background Nagios is an open source host, service and network monitoring program. Description Sebastian Krahmer of the SuSE security team discovered a buffer overflow vulnerability in the handling of a negative HTTP Content-Length header. Impact A buffer overflow in Nagios CGI scripts under certa...