FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

nagios -- buffer overflow in history.cgi

Affected packages
nagios < 3.4.3_1

Details

VuXML ID 97c22a94-5b8b-11e2-b131-000c299b62e1
Discovery 2012-12-21
Entry 2013-01-10

full disclosure reports:

history.cgi is vulnerable to a buffer overflow due to the use of sprintf with user supplied data that has not been restricted in size.

References

CVE Name CVE-2012-6096
URL http://archives.neohapsis.com/archives/fulldisclosure/2012-12/0108.html
URL http://nagios.svn.sourceforge.net/viewvc/nagios?view=revision&revision=2547