Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntuUbuntuUSN-532-1
HistoryOct 22, 2007 - 12:00 a.m.

nagios-plugins vulnerability

2007-10-2200:00:00
ubuntu.com
40

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

7.6 High

AI Score

Confidence

Low

0.02 Low

EPSS

Percentile

89.1%

JSON

Releases

  • Ubuntu 6.06

Packages

  • nagios-plugins -

Details

Nobuhiro Ban discovered that check_http in nagios-plugins did
not properly sanitize its input when following redirection
requests. A malicious remote web server could cause a denial
of service or possibly execute arbitrary code as the user.
(CVE-2007-5198)

Aravind Gottipati discovered that sslutils.c in nagios-plugins
did not properly reset pointers to NULL. A malicious remote web
server could cause a denial of service.

Aravind Gottipati discovered that check_http in nagios-plugins
did not properly calculate how much memory to reallocate when
following redirection requests. A malicious remote web server
could cause a denial of service.

OSVersionArchitecturePackageVersionFilename
Ubuntu6.06noarchnagios-plugins< 1.4.2-5ubuntu3.1UNKNOWN
Ubuntu6.06noarchnagios-plugins-basic< 1.4.2-5ubuntu3.1UNKNOWN
Ubuntu6.06noarchnagios-plugins-standard< 1.4.2-5ubuntu3.1UNKNOWN

Related

nessus 10
openvas 20
fedora 3
cvelist 1
cve 1
ubuntucve 1
prion 1
freebsd 1
nvd 1
osv 1
gentoo 1
debian 2
securityvulns 2
nessus
nessus
Fedora 8 : nagios-plugins-1.4.11-2.fc8 (2008-3061)
2008-04-18 00:00:00
FreeBSD : nagios-plugins -- Long Location Header Buffer Overflow Vulnerability (7453c85d-7830-11dc-b4c8-0016179b2dd5)
2007-10-15 00:00:00
Fedora 8 : nagios-2.11-3.fc8 (2008-3098)
2008-04-18 00:00:00
openvas
openvas
Fedora Update for nagios FEDORA-2008-3098
2009-02-17 00:00:00
FreeBSD Ports: nagios-plugins
2008-09-04 00:00:00
Ubuntu Update for nagios-plugins vulnerability USN-532-1
2009-03-23 00:00:00
fedora
fedora
[SECURITY] Fedora 8 Update: nagios-2.11-3.fc8
2008-04-17 03:52:13
[SECURITY] Fedora 7 Update: nagios-plugins-1.4.11-2.fc7
2008-04-17 03:54:34
[SECURITY] Fedora 8 Update: nagios-plugins-1.4.11-2.fc8
2008-04-17 03:48:55
cvelist
cvelist
CVE-2007-5198
2007-10-04 17:00:00
cve
cve
CVE-2007-5198
2007-10-04 17:17:00
ubuntucve
ubuntucve
CVE-2007-5198
2007-10-04 00:00:00
prion
prion
Buffer overflow
2007-10-04 17:17:00
freebsd
freebsd
nagios-plugins -- Long Location Header Buffer Overflow Vulnerability
2007-09-28 00:00:00
nvd
nvd
CVE-2007-5198
2007-10-04 17:17:00
osv
osv
nagios-plugins - several
2008-02-12 00:00:00
gentoo
gentoo
Nagios Plugins: Two buffer overflows
2007-11-08 00:00:00
debian
debian
[SECURITY] [DSA 1495-1] New nagios-plugins packages fix several vulnerabilities
2008-02-12 22:48:07
[SECURITY] [DSA 1495-2] New nagios-plugins packages fix regression
2008-02-17 14:37:37
securityvulns
securityvulns
[ GLSA 200711-11 ] Nagios Plugins: Two buffer overflows
2007-11-14 00:00:00
Nagios plugins multiple security vulnerabilities
2007-11-14 00:00:00

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

7.6 High

AI Score

Confidence

Low

0.02 Low

EPSS

Percentile

89.1%

JSON
Related for USN-532-1
nessus10openvas20fedora3cvelist1cve1ubuntucve1prion1freebsd1nvd1osv1gentoo1debian2securityvulns2