|
|
CVE Reference: CVE-2006-2489 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2006-2489 |
|
|
Description: Integer overflow in CGI scripts in Nagios 1.x before 1.4.1 and 2.x before 2.3.1 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a content length (Content-Length) HTTP header. NOTE: this is a different vulnerability than CVE-2006-2162. |
|
|
CVE Status: Candidate |
|
|
References: XF http://xforce.iss.net/xforce/xfdb/26454 UBUNTU http://www.ubuntulinux.org/support/documentation/usn/usn-287-1 SAID Secunia Advisory: SA20313 Secunia Advisory: SA20247 Secunia Advisory: SA20123 GENTOO http://www.gentoo.org/security/en/glsa/glsa-200605-07.xml DEBIAN http://www.debian.org/security/2006/dsa-1072 CONFIRM http://www.nagios.org/development/changelog.php BID 18059 |
|
| Return to the previous page. |
