Xymon History Viewer Component Stack-Based Buffer Overflow Vulnerability

By GIXnews

A vulnerability in the history.c file in Xymon could allow an unauthenticated, remote attacker to access or modify data, or cause a denial of service (DoS) condition on an affected system.

The vulnerability is due to a stack-based buffer overflow condition in the history.c file of the affected software. An attacker could exploit this vulnerability by submitting a long hostname or service parameter to the affected system. A successful exploit could allow the attacker to access or modify data, or cause a DoS condition on the affected system.

Xymon has confirmed the vulnerability and released a software update.

Security Impact Rating: Critical

CVE: CVE-2019-13485

Source:: Cisco Multivendor Vulnerability Alerts