Login or Register to Ask a Question and Join Our Community


Infrastructure Monitoring

USN-795-1: Nagios vulnerability

Login to Discuss or Reply to this Discussion in Our Community

 
Thread Tools Search this Thread
Special Forums UNIX and Linux Applications Infrastructure Monitoring USN-795-1: Nagios vulnerability
# 1  
Old 07-02-2009
USN-795-1: Nagios vulnerability
Referenced CVEs:
CVE-2009-2288


Description:
=========================================================== Ubuntu Security Notice USN-795-1 July 02, 2009 nagios2, nagios3 vulnerability CVE-2009-2288 =========================================================== A security issue affects the following Ubuntu releases: Ubuntu 8.04 LTS Ubuntu 8.10 Ubuntu 9.04 This advisory also applies to the corresponding versions of Kubuntu, Edubuntu, and Xubuntu. The problem can be corrected by upgrading your system to the following package versions: Ubuntu 8.04 LTS: nagios2 2.11-1ubuntu1.5 Ubuntu 8.10: nagios3 3.0.2-1ubuntu1.2 Ubuntu 9.04: nagios3 3.0.6-2ubuntu1.1 After a standard system upgrade you need to restart Nagios to effect the necessary changes. Details follow: It was discovered that Nagios did not properly parse certain commands submitted using the WAP web interface. An authenticated user could exploit this flaw and execute arbitrary programs on the server.





More...
Login or Register to Ask a Question

Previous Thread | Next Thread
Login or Register to Ask a Question

LEARN ABOUT DEBIAN

nagios::plugin::threshold

Nagios::Plugin::Threshold(3pm)				User Contributed Perl Documentation			    Nagios::Plugin::Threshold(3pm)

NAME

       Nagios::Plugin::Threshold - class for handling Nagios::Plugin thresholds.

SYNOPSIS

	   # NB: This is an internal Nagios::Plugin class.
	   # See Nagios::Plugin itself for public interfaces.

	   # Constructor
	   $t = Nagios::Plugin::Threshold->set_thresholds(
	       warning	=> $warning_range_string,
	       critical => $critical_range_string,
	   );

	   # Value checking - returns CRITICAL if in the critical range,
	   # WARNING if in the warning range, and OK otherwise
	   $status = $t->get_status($value);

	   # Accessors - return the associated N::P::Range object
	   $warning_range  = $t->warning;
	   $critical_range = $t->critical;

DESCRIPTION

       Internal Nagios::Plugin class for handling threshold data. See Nagios::Plugin for public interfaces.

       A threshold object contains (typically) a pair of ranges, associated with a particular severity e.g.

	 warning  => range1
	 critical => range2

AUTHOR

       This code is maintained by the Nagios Plugin Development Team: see http://nagiosplug.sourceforge.net.

COPYRIGHT AND LICENSE

       Copyright (C) 2006-2007 Nagios Plugin Development Team

       This library is free software; you can redistribute it and/or modify it under the same terms as Perl itself.

perl v5.14.2							    2011-12-22					    Nagios::Plugin::Threshold(3pm)