A buffer over-read in Util_urlDecode in util.c in Tildeslash Monit prior to 5.25.3 allows a remote authenticated malicious user to retrieve the contents of adjacent memory via manipulation of GET or POST parameters. The attacker can also cause a denial of service (application outage).
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
tildeslash monit |
||
debian debian linux 8.0 |
||
fedoraproject fedora 31 |
||
fedoraproject fedora 32 |
||
canonical ubuntu linux 18.10 |
||
canonical ubuntu linux 19.04 |