Lucene search

[email protected]NVD:CVE-2009-2288

HistoryJul 01, 2009 - 1:00 p.m.

CVE-2009-2288

2009-07-0113:00:01

CWE-78

[email protected]

web.nvd.nist.gov

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.3 High

AI Score

Confidence

Low

0.97 High

EPSS

Percentile

99.7%

JSON

statuswml.cgi in Nagios before 3.1.1 allows remote attackers to execute arbitrary commands via shell metacharacters in the (1) ping or (2) Traceroute parameters.

Affected configurations

NVD

Node

nagiosnagiosRange≤3.1.0

nagiosnagiosMatch1.0

nagiosnagiosMatch1.0b1

nagiosnagiosMatch1.0b2

nagiosnagiosMatch1.0b4

nagiosnagiosMatch1.1

nagiosnagiosMatch1.4.1

nagiosnagiosMatch2.0

nagiosnagiosMatch2.0b4

nagiosnagiosMatch2.7

nagiosnagiosMatch2.10

nagiosnagiosMatch3.0

nagiosnagiosMatch3.0alpha1

nagiosnagiosMatch3.0alpha2

nagiosnagiosMatch3.0alpha3

nagiosnagiosMatch3.0alpha4

nagiosnagiosMatch3.0beta1

nagiosnagiosMatch3.0beta2

nagiosnagiosMatch3.0beta3

nagiosnagiosMatch3.0beta4

nagiosnagiosMatch3.0beta5

nagiosnagiosMatch3.0beta6

nagiosnagiosMatch3.0beta7

nagiosnagiosMatch3.0rc1

nagiosnagiosMatch3.0rc2

nagiosnagiosMatch3.0rc3

nagiosnagiosMatch3.0.1

nagiosnagiosMatch3.0.2

nagiosnagiosMatch3.0.3

nagiosnagiosMatch3.0.4

nagiosnagiosMatch3.0.5

nagiosnagiosMatch3.0.6

References

marc.info/?l=bugtraq&m=126996888626964&w=2

secunia.com/advisories/35543

secunia.com/advisories/35688

secunia.com/advisories/35692

secunia.com/advisories/39227

security.gentoo.org/glsa/glsa-200907-15.xml

tracker.nagios.org/view.php?id=15

www.debian.org/security/2009/dsa-1825

www.nagios.org/development/history/core-3x/

www.securitytracker.com/id?1022503

www.ubuntu.com/usn/USN-795-1

www.vupen.com/english/advisories/2010/0750

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.3 High

AI Score

Confidence

Low

0.97 High

EPSS

Percentile

99.7%

JSON

Related for NVD:CVE-2009-2288

freebsd1 nessus9 packetstorm1 openvas17 checkpoint_advisories1 saint4 debian1 dsquare1 ubuntucve1 securityvulns4 prion1 cve1 cvelist1 canvas1 ubuntu1 gentoo1