CVE-2004-1898

Published: 31/12/2004 Updated: 11/07/2017

CVSS v2 Base Score: 10 | Impact Score: 10 | Exploitability Score: 10

VMScore: 1000

Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

Stack-based buffer overflow in the administration interface in Monit 1.4 up to and including 4.2 allows remote malicious users to execute arbitrary code via a long username.

Vulnerable Product	Search on Vulmon	Subscribe to Product
tildeslash monit 4.2
tildeslash monit 4.3_beta_2
tildeslash monit 3.2
tildeslash monit 4.0
tildeslash monit 1.4
tildeslash monit 3.0
tildeslash monit 3.1
tildeslash monit 4.1
tildeslash monit 4.1.1

/* * THE EYE ON SECURITY RESEARCH GROUP - INDIA * * wwweos-indianet/poc/305monitc * Remote Root Exploit for Monit <= 42 * Vulnerability: Buffer overflow in handling of Basic Authentication informations * Server authenticates clients through: * Authentication: Basic Base64Encode[UserName:Password] * Here we are exploiting the insecure ...

NVD-CWE-Other http://archives.neohapsis.com/archives/vulnwatch/2004-q1/0076.html http://www.tildeslash.com/monit/changes.html http://www.tildeslash.com/monit/secadv_20040305.txt http://www.securityfocus.com/bid/10051 http://secunia.com/advisories/11304 http://www.osvdb.org/4981 http://marc.info/?l=bugtraq&m=108119149103696&w=2 https://exchange.xforce.ibmcloud.com/vulnerabilities/15735 https://nvd.nist.gov https://www.exploit-db.com/exploits/580/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2004-1898

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect