RSS   Vulnerabilities for 'Monitoring software'   RSS

2018-10-24
 
CVE-2018-18552

CWE-22
 

 
ServersCheck Monitoring Software through 14.3.3 allows local users to cause a denial of service (menu functionality loss) by creating an LNK file that points to a second LNK file, if this second LNK file is associated with a Start menu. Ultimately, this behavior comes from a Directory Traversal bug (via the sensor_details.html id parameter) that allows creating empty files in arbitrary directories.

 
 
CVE-2018-18551

CWE-79
 

 
ServersCheck Monitoring Software through 14.3.3 has Persistent and Reflected XSS via the sensors.html status parameter, sensors.html type parameter, sensors.html device parameter, report.html location parameter, group_delete.html group parameter, report_save.html query parameter, sensors.html location parameter, or group_delete.html group parameter.

 
2005-05-29
 
CVE-2005-1798

 

 
Directory traversal vulnerability in ServersCheck Monitoring Software 5.9.0 to 5.10.0 allows remote attackers to read arbitrary files via .. (dot dot) sequences in an HTTP request.

 

 >>> Vendor: Serverscheck 2 Products
Monitoring software
Serverscheck


Copyright 2024, cxsecurity.com

 

Back to Top