oss-sec mailing list archives
Re-emergence of CVE-2008-4796 in Nagios current
From: Kurt Seifried <kseifried () redhat com>
Date: Tue, 30 Apr 2013 14:54:56 -0600
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 CVE-2008-4796 snoopy: command execution via shell metacharacters Was found in Nagios core by Grant Murphy. Filed upstream: http://tracker.nagios.org/view.php?id=449 We really need to start thinking about ways to find vulnerable copies of code and fixing them everywhere people have embedded them. - -- Kurt Seifried Red Hat Security Response Team (SRT) PGP: 0x5E267993 A90B F995 7350 148F 66BF 7554 160D 4553 5E26 7993 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.13 (GNU/Linux) iQIcBAEBAgAGBQJRgC+gAAoJEBYNRVNeJnmTUtAP/RXsDNAwMBHpqOjoIKC6OUh2 17Ps1HzPQ1ecfAQcAVxv3GSO1BmlALU00JGcjqk8RBYwe8Y2aj8XvHKuW3wGLPHL 5/1YMxg+rRS8OfE6RpKzJG8G70ie30p+WAVca7T+ah/GHNxUcVqOOdtQb3C4uujm GyLybXVDq8+nsOyMUqJKupDhEutMoqk4KhYfjAHNqd7f5/urFdSdajdiu2xBZFQE TTeuzIXvw2KuGIStOzp0SLZdgZ+1iXholZjMv5pm5O3NlpBKziDZCBAWfpDuNUMm PAnT36mxzdg8EtirP9bXC34aXiE5lF6+Nt1nXwO0lu/UhccN5G6R0QpEI3GsporK SajVT9Ql5oSp2RUYWu9CESm7ZvG3gznFtjBLh432ikwv8XTDNeRb7eoGJMGn4IVG zacORWR4dKDYfRlQyOUGvGZG9/n42tJYn4x3WzGu+dAM2ZGSiYci7y/zzkSlikBx F/UNinjVRyzL5eemqufEl0rGw00+9FjLMngeMJUI1FT2u4sADcrn2pTr12jOM7ZF kKCNVV1qKC3AyXLIqtQupPW3CHIgUUVAtVlrkZ1oxYXfZnHEDEi0sROK3Y2Nko1G vBUuB+akVUnKV1rE/dJzN3W+LWbR8s8/cGyA3Lv9NsSykQz1o8nnbdRZAvpeiY3J TOh0g6HhB6VVgqOpIccH =rZhm -----END PGP SIGNATURE-----
Current thread:
- Re-emergence of CVE-2008-4796 in Nagios current Kurt Seifried (Apr 30)
- Re: Re-emergence of CVE-2008-4796 in Nagios current David Jorm (Apr 30)
- Re: Re-emergence of CVE-2008-4796 in Nagios current Michael Gilbert (May 03)
- Re: Re-emergence of CVE-2008-4796 in Nagios current David Jorm (Apr 30)