Nagios plugins multiple security vulnerabilities - security vulnerabilities database

[EN] securityvulns.ru
no-pyccku

Nagios plugins multiple security vulnerabilities
Published: 14.11.2007
Source: BUGTRAQ
SecurityVulns ID: 8344
Type: client
Level: 5/10
Description: Buffer overflows in check_snmp and check_http on server reply parsing.

Affected: NAGIOS : nagios-plugins 1.4
CVE: CVE-2007-5623 (Buffer overflow in the check_snmp function in Nagios Plugins (nagios-plugins) 1.4.10 allows remote attackers to cause a denial of service (crash) via crafted snmpget replies.)
CVE-2007-5198 (Buffer overflow in the redir function in check_http.c in Nagios Plugins before 1.4.10 allows remote web servers to execute arbitrary code via long Location header responses (redirects).)

Original document GENTOO, [ GLSA 200711-11 ] Nagios Plugins: Two buffer overflows (14.11.2007)

Discuss: Read or add your comments to this news (0 comments)