Oval Definition:oval:org.mitre.oval:def:7884
Revision Date:2014-06-23Version:18
Title:DSA-1883 nagios2 -- missing input sanitising
Description:Several vulnerabilities have been found in nagios2, a host/service/network monitoring and management system. The Common Vulnerabilities and Exposures project identifies the following problems: Several cross-site scripting issues via several parameters were discovered in the CGI scripts, allowing attackers to inject arbitrary HTML code. In order to cover the different attack vectors, these issues have been assigned CVE-2008-1360.
Family:unixClass:patch
Status:ACCEPTEDReference(s):CVE-2007-5624
CVE-2007-5803
CVE-2008-1360
DSA-1883
Platform(s):Debian GNU/Linux 4.0
Product(s):nagios2
Definition Synopsis
  • Debian GNU/Linux 4.0 is installed.
  • AND Architecture section
  • Architecture independent section
  • Installed architecture is all
  • AND Packages section
  • nagios2-common is earlier than 2.6-2+etch4
  • OR nagios2-doc is earlier than 2.6-2+etch4
  • OR Architecture dependent section
  • Supported architectures section
  • Installed architecture is amd64
  • OR Installed architecture is sparc
  • OR Installed architecture is arm
  • OR Installed architecture is i386
  • OR Installed architecture is mips
  • OR Installed architecture is ia64
  • OR Installed architecture is alpha
  • OR Installed architecture is powerpc
  • OR Installed architecture is mipsel
  • OR Installed architecture is hppa
  • AND Packages section
  • nagios2-dbg is earlier than 2.6-2+etch4
  • OR nagios2 is earlier than 2.6-2+etch4
    • BACK