In Xymon up to and including 4.3.28, a buffer overflow vulnerability exists in the csvinfo CGI script. The overflow may be exploited by sending a crafted GET request that triggers an sprintf of the srcdb parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
xymon xymon |
||
debian debian linux 8.0 |