CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 0CVE-2019-13484
https://notcve.org/view.php?id=CVE-2019-13484
In Xymon through 4.3.28, a buffer overflow exists in the status-log viewer CGI because of expansion in appfeed.c. En Xymon a través de 4.3.28, existe un desbordamiento de búfer en el visor de registro de estado CGI debido a expansión en appfeed.c. • https://github.com/svn2github/xymon/blob/master/branches/4.3.28/web/appfeed.c https://lists.debian.org/debian-lts-announce/2019/08/msg00032.html https://lists.xymon.com/archive/2019-July/046570.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 0CVE-2019-13485
https://notcve.org/view.php?id=CVE-2019-13485
In Xymon through 4.3.28, a stack-based buffer overflow vulnerability exists in the history viewer component via a long hostname or service parameter to history.c. En Xymon a través de 4.3.28, existe una vulnerabilidad de desbordamiento de búfer stack-based en el componente del visor de historial a través de un nombre de host largo o un parámetro de servicio en history.c. • https://github.com/svn2github/xymon/blob/master/branches/4.3.28/web/history.c https://lists.debian.org/debian-lts-announce/2019/08/msg00032.html https://lists.xymon.com/archive/2019-July/046570.html • CWE-787: Out-of-bounds Write •
CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 0CVE-2019-13486
https://notcve.org/view.php?id=CVE-2019-13486
In Xymon through 4.3.28, a stack-based buffer overflow exists in the status-log viewer component because of expansion in svcstatus.c. En Xymon a través de 4.3.28, existe un desbordamiento de búfer stack-based en el componente del visor de registro de estado debido a expansión en svcstatus.c. • https://github.com/svn2github/xymon/blob/master/branches/4.3.28/web/svcstatus.c https://lists.debian.org/debian-lts-announce/2019/08/msg00032.html https://lists.xymon.com/archive/2019-July/046570.html • CWE-787: Out-of-bounds Write •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2015-1430
https://notcve.org/view.php?id=CVE-2015-1430
Buffer overflow in xymon 4.3.17-1. Existe una vulnerabilidad de desbordamiento de búfer en xymon 4.3.17-1. • http://www.openwall.com/lists/oss-security/2015/01/31/4 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.8EPSS: 7%CPEs: 44EXPL: 0CVE-2016-2054 – Xymon 4.3.x Buffer Overflow / Code Execution / Information Disclosure
https://notcve.org/view.php?id=CVE-2016-2054
Multiple buffer overflows in xymond/xymond.c in xymond in Xymon 4.1.x, 4.2.x, and 4.3.x before 4.3.25 allow remote attackers to execute arbitrary code or cause a denial of service (daemon crash) via a long filename, involving handling a "config" command. Múltiples desbordamientos de buffer en xymond/xymond.c en xymond en Xymon 4.1.x, 4.2.x y 4.3.x en versiones anteriores a 4.3.25 permiten a atacantes remotos ejecutar código arbitrario o provocar una denegación de servicio (caída de demonio) a través de un nombre de archivo largo, implicando el manejo de un comando "config". Xymon 4.3.x versions suffers from buffer overflow, information disclosure, code execution, cross site scripting, and various other vulnerabilities. • http://lists.xymon.com/archive/2016-February/042986.html http://packetstormsecurity.com/files/135758/Xymon-4.3.x-Buffer-Overflow-Code-Execution-Information-Disclosure.html http://www.debian.org/security/2016/dsa-3495 http://www.securityfocus.com/archive/1/537522/100/0/threaded https://sourceforge.net/p/xymon/code/7859 https://sourceforge.net/p/xymon/code/7860 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •