Vulnerabilities > CVE-2012-2147 - Resource Management Errors vulnerability in Munin-Monitoring Munin 2.0Rc4

CVSS 5.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

PARTIAL

network

low complexity

munin-monitoring

CWE-399

NVD

Published: 2012-08-26

Updated: 2017-08-29

Summary

munin-cgi-graph in Munin 2.0 rc4 allows remote attackers to cause a denial of service (disk or memory consumption) via many image requests with large values in the (1) size_x or (2) size_y parameters.

Vulnerable Configurations

Part	Description	Count
Application	Munin-Monitoring Munin Monitoring Munin 2.0_Rc4	1

Common Weakness Enumeration (CWE)

CWE-399 - Resource Management Errors

References

http://www.openwall.com/lists/oss-security/2012/04/17/2
http://www.openwall.com/lists/oss-security/2012/04/18/2
http://www.openwall.com/lists/oss-security/2012/04/19/3
http://www.openwall.com/lists/oss-security/2012/04/19/4
http://www.openwall.com/lists/oss-security/2012/04/19/5
http://www.openwall.com/lists/oss-security/2012/04/27/7
http://www.openwall.com/lists/oss-security/2012/04/29/2
https://exchange.xforce.ibmcloud.com/vulnerabilities/78924