Vulnerabilities > CVE-2004-1897
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN exploit available
Summary
Administration interface in Monit 1.4 through 4.2 allows remote attackers to cause a denial of service (segmentation fault) by sending a Basic Authentication request without a password, which causes Monit to decrement a null pointer and perform an out-of-bounds read.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 9 |
Exploit-Db
| description | Monit <= 4.2 Remote Root Buffer Overflow Exploit. CVE-2004-1897. Remote exploit for linux platform |
| id | EDB-ID:174 |
| last seen | 2016-01-31 |
| modified | 2004-04-12 |
| published | 2004-04-12 |
| reporter | Abhisek Datta |
| source | https://www.exploit-db.com/download/174/ |
| title | Monit <= 4.2 - Remote Root Buffer Overflow Exploit |
References
- http://marc.info/?l=bugtraq&m=108119149103696&w=2
- http://marc.info/?l=bugtraq&m=108119149103696&w=2
- http://secunia.com/advisories/11304
- http://secunia.com/advisories/11304
- http://www.securityfocus.com/bid/10051
- http://www.securityfocus.com/bid/10051
- http://www.tildeslash.com/monit/changes.html
- http://www.tildeslash.com/monit/changes.html
- http://www.tildeslash.com/monit/secadv_20040305.txt
- http://www.tildeslash.com/monit/secadv_20040305.txt
- https://exchange.xforce.ibmcloud.com/vulnerabilities/15734
- https://exchange.xforce.ibmcloud.com/vulnerabilities/15734