Vulnerabilities > CVE-2004-1898 - Remote vulnerability in Multiple Monit Administration Interface

CVSS 10.0 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

COMPLETE

network

low complexity

tildeslash

critical

exploit available

NVD

Published: 2004-12-31

Updated: 2017-07-11

Summary

Stack-based buffer overflow in the administration interface in Monit 1.4 through 4.2 allows remote attackers to execute arbitrary code via a long username.

Vulnerable Configurations

Part	Description	Count
Application	Tildeslash Tildeslash Monit 1.4 Tildeslash Monit 3.0 Tildeslash Monit 3.1 Tildeslash Monit 3.2 Tildeslash Monit 4.0 Tildeslash Monit 4.1 Tildeslash Monit 4.1.1 Tildeslash Monit 4.2 Tildeslash Monit 4.3_Beta_2	9

Exploit-Db

description	Monit <= 4.2 Basic Authentication Remote Root Exploit. CVE-2004-1898. Remote exploit for linux platform
id	EDB-ID:580
last seen	2016-01-31
modified	2004-10-17
published	2004-10-17
reporter	rtk
source	https://www.exploit-db.com/download/580/
title	Monit <= 4.2 Basic Authentication Remote Root Exploit

Summary

Vulnerable Configurations

Exploit-Db

References