7 matches found
SUSE CVE-2009-0241
Stack-based buffer overflow in the processpath function in gmetad/server.c in Ganglia 3.1.1 allows remote attackers to cause a denial of service crash via a request to the gmetad service with a long pathname...
GLSA-200903-22 : Ganglia: Execution of arbitrary code
The remote host is affected by the vulnerability described in GLSA-200903-22 Ganglia: Execution of arbitrary code Spike Spiegel reported a stack-based buffer overflow in the processpath function when processing overly long pathnames in gmetad/server.c. Impact : A remote attacker could send a...
Ganglia: Execution of arbitrary code
Background Ganglia is a scalable distributed monitoring system for clusters and grids. Description Spike Spiegel reported a stack-based buffer overflow in the processpath function when processing overly long pathnames in gmetad/server.c. Impact A remote attacker could send a specially crafted...
Ganglia gmetad process_path()函数远程栈溢出漏洞
BUGTRAQ ID: 33299 Ganglia是一个开源项目,为高性能计算系统(例如集群和网格)提供了一个免费的可扩展分布式监控系统。 Ganglia的gmetad/server.c文件中的processpath函数没有执行边界检查,如果远程攻击者向gmetad服务提交的请求中路径单元长于strncpy调用写入到无效内存位置服务的长度的话,就可以触发栈溢出,导致执行任意代码。 Ganglia 3.1.1 Ganglia ------- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:...
CVE-2009-0241
Stack-based buffer overflow in the processpath function in gmetad/server.c in Ganglia 3.1.1 allows remote attackers to cause a denial of service crash via a request to the gmetad service with a long pathname...
CVE-2009-0241
Stack-based buffer overflow in the processpath function in gmetad/server.c in Ganglia 3.1.1 allows remote attackers to cause a denial of service crash via a request to the gmetad service with a long pathname...
CVE-2009-0241
Stack-based buffer overflow in the processpath function in gmetad/server.c in Ganglia 3.1.1 allows remote attackers to cause a denial of service crash via a request to the gmetad service with a long pathname...