'[oss-security] nagios: remote code execution'

[prev in list] [next in list] [prev in thread] [next in thread] 

List:       oss-security
Subject:    [oss-security] nagios: remote code execution
From:       Tomas Hoger <thoger () redhat ! com>
Date:       2009-06-29 11:23:23
Message-ID: 20090629132323.10683f9e () redhat ! com
[Download RAW message or body]

Hi!

Just in case you missed it - nagios 3.1.1 mentions:

# Security fix for statuswml.cgi where arbitrary shell injection was
possible 

( http://www.nagios.org/development/history/core-3x/ )

Further details in the upstream bug:

  http://tracker.nagios.org/view.php?id=15

-- 
Tomas Hoger / Red Hat Security Response Team
[prev in list] [next in list] [prev in thread] [next in thread]

Configure | About | News | Add a list | Sponsored by KoreLogic