Back to search
CVE-2008-5027
Published: Nov 10, 2008
Modified: Aug 7, 2024
PUBLISHED
Description
The Nagios process in (1) Nagios before 3.0.5 and (2) op5 Monitor before 4.0.1 allows remote authenticated users to bypass authorization checks, and trigger execution of arbitrary programs by this process, via an (a) custom form or a (b) browser addon.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
[nagios-devel] 20081107 Security fixes completed
mailing-list
x_refsource_MLIST
ADV-2008-3364
vdb-entry
x_refsource_VUPEN
GLSA-200907-15
vendor-advisory
x_refsource_GENTOO
http://www.nagios.org/development/history/nagios-3x.php
x_refsource_MISC
33320
third-party-advisory
x_refsource_SECUNIA
[oss-security] 20081106 CVE request: Nagios (two issues)
mailing-list
x_refsource_MLIST
32156
vdb-entry
x_refsource_BID
1022165
vdb-entry
x_refsource_SECTRACK
USN-698-3
vendor-advisory
x_refsource_UBUNTU
ADV-2008-3029
vdb-entry
x_refsource_VUPEN
SSRT090060
vendor-advisory
x_refsource_HP
HPSBMA02419
vendor-advisory
x_refsource_HP
ADV-2009-1256
vdb-entry
x_refsource_VUPEN
USN-698-1
vendor-advisory
x_refsource_UBUNTU
35002
third-party-advisory
x_refsource_SECUNIA
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now