5 matches found
Linux Distros Unpatched Vulnerability : CVE-2019-13452
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Xymon through 4.3.28, a buffer overflow vulnerability exists in reportlog.c. CVE-2019-13452 Note that Nessus relies on the presence of the package as reporte...
Xymon history.c Buffer Overflow Vulnerability
Xymon is an open source cross-platform system status monitoring software. A buffer overflow vulnerability exists in history.c in Xymon 4.3.28 and earlier versions. No details of the vulnerability are provided at this time...
Xymon useradm Command Execution
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Xymon useradm Command Execution', 'Description' = %q This module exploits a command injection vulnerability in Xymon versions before 4.3.25 which...
DEBIAN-CVE-2016-2057
lib/xymondipc.c in Xymon 4.1.x, 4.2.x, and 4.3.x before 4.3.25 use weak permissions 666 for an unspecified IPC message queue, which allows local users to inject arbitrary messages by writing to that queue...
CVE-2016-2055
xymond/xymond.c in xymond in Xymon 4.1.x, 4.2.x, and 4.3.x before 4.3.25 allow remote attackers to read arbitrary files in the configuration directory via a "config" command...