Unknown
CVE-2014-1878
CVE ID
AttackerKB requires a CVE ID in order to pull vulnerability data and references from the CVE list and the National Vulnerability Database. If available, please supply below:
Add References:
Unknown
(0 users assessed)Unknown
(0 users assessed)Unknown
Unknown
Unknown
MITRE ATT&CK
Collection
Command and Control
Credential Access
Defense Evasion
Discovery
Execution
Exfiltration
Impact
Initial Access
Lateral Movement
Persistence
Privilege Escalation
Topic Tags
Description
Stack-based buffer overflow in the cmd_submitf function in cgi/cmd.c in Nagios Core, possibly 4.0.3rc1 and earlier, and Icinga before 1.8.6, 1.9 before 1.9.5, and 1.10 before 1.10.3 allows remote attackers to cause a denial of service (segmentation fault) via a long message to cmd.cgi.
Add Assessment
No one has assessed this topic. Be the first to add your voice to the community.
CVSS V3 Severity and Metrics
General Information
Vendors
- icinga,
- nagios
Products
- icinga,
- icinga 1.10.0,
- icinga 1.10.1,
- icinga 1.10.2,
- icinga 1.8.0,
- icinga 1.8.1,
- icinga 1.8.2,
- icinga 1.8.3,
- icinga 1.8.4,
- icinga 1.9.0,
- icinga 1.9.1,
- icinga 1.9.2,
- icinga 1.9.3,
- icinga 1.9.4,
- nagios,
- nagios 4.0.0,
- nagios 4.0.2
References
Advisory
Additional Info
Technical Analysis
Report as Exploited in the Wild
CVE ID
AttackerKB requires a CVE ID in order to pull vulnerability data and references from the CVE list and the National Vulnerability Database. If available, please supply below: