Multiple stack-based buffer overflows in the get_history function in history.cgi in Nagios Core prior to 3.4.4, and Icinga 1.6.x prior to 1.6.2, 1.7.x prior to 1.7.4, and 1.8.x prior to 1.8.4, might allow remote malicious users to execute arbitrary code via a long (1) host_name variable (host parameter) or (2) svc_description variable.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
nagios nagios 3.0 |
||
nagios nagios 3.1.2 |
||
nagios nagios 3.2.2 |
||
nagios nagios 3.2.0 |
||
nagios nagios 3.1.1 |
||
nagios nagios 3.0.6 |
||
nagios nagios 3.0.1 |
||
nagios nagios 3.4.1 |
||
nagios nagios 3.0.2 |
||
nagios nagios 3.1.0 |
||
nagios nagios 3.4.2 |
||
nagios nagios 3.0.4 |
||
nagios nagios 3.2.1 |
||
nagios nagios |
||
nagios nagios 3.0.3 |
||
nagios nagios 3.2.3 |
||
nagios nagios 3.3.1 |
||
nagios nagios 3.0.5 |
||
nagios nagios 3.4.0 |
||
icinga icinga 1.6.1 |
||
icinga icinga 1.7.0 |
||
icinga icinga 1.8.2 |
||
icinga icinga 1.8.0 |
||
icinga icinga 1.7.2 |
||
icinga icinga 1.7.3 |
||
icinga icinga 1.8.3 |
||
icinga icinga 1.8.1 |
||
icinga icinga 1.6.0 |
||
icinga icinga 1.7.1 |