Xymon Stack Buffer Overflow Vulnerability

Xymon is an open source cross-platform system status monitoring software. A stack buffer overflow vulnerability exists in the status log viewer component in Xymon 4.3.28 and earlier versions. No details of the vulnerability are provided at this time...

CVE-2019-13451

In Xymon through 4.3.28, a buffer overflow vulnerability exists in history.c...

CVE-2019-13484

In Xymon through 4.3.28, a buffer overflow exists in the status-log viewer CGI because of expansion in appfeed.c...

CVE-2015-1430

Buffer overflow in xymon 4.3.17-1...

CVE-2016-2058

Multiple cross-site scripting XSS vulnerabilities in Xymon 4.1.x, 4.2.x, and 4.3.x before 4.3.25 allow 1 remote Xymon clients to inject arbitrary web script or HTML via a status-message, which is not properly handled in the "detailed status" page, or 2 remote authenticated users to inject arbitra...

CVE-2016-2054

Multiple buffer overflows in xymond/xymond.c in xymond in Xymon 4.1.x, 4.2.x, and 4.3.x before 4.3.25 allow remote attackers to execute arbitrary code or cause a denial of service daemon crash via a long filename, involving handling a "config" command...

CVE-2011-1716

Multiple cross-site scripting XSS vulnerabilities in the Web UI in Xymon before 4.3.1 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors...