Описание
Integer overflow in CGI scripts in Nagios 1.x before 1.4.1 and 2.x before 2.3.1 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a content length (Content-Length) HTTP header. NOTE: this is a different vulnerability than CVE-2006-2162.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | released | 1.3-cvs.20050402-8ubuntu7 |
| devel | released | 1.3-cvs.20050402-8ubuntu7 |
| edgy | released | 1.3-cvs.20050402-8ubuntu7 |
| feisty | released | 1.3-cvs.20050402-8ubuntu7 |
| upstream | needs-triage |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | DNE | |
| devel | released | 2.4-1 |
| edgy | released | 2.4-1 |
| feisty | released | 2.4-1 |
| upstream | needs-triage |
Показывать по
7.5 High
CVSS2
Связанные уязвимости
Integer overflow in CGI scripts in Nagios 1.x before 1.4.1 and 2.x before 2.3.1 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a content length (Content-Length) HTTP header. NOTE: this is a different vulnerability than CVE-2006-2162.
Integer overflow in CGI scripts in Nagios 1.x before 1.4.1 and 2.x bef ...
Integer overflow in CGI scripts in Nagios 1.x before 1.4.1 and 2.x before 2.3.1 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a content length (Content-Length) HTTP header. NOTE: this is a different vulnerability than CVE-2006-2162.
7.5 High
CVSS2