CVE-2007-5198

NONECVSS 0.0

0.0

Buffer overflow in the redir function in check_http.c in Nagios Plugins before 1.4.10, when running with the -f (follow) option, allows remote web servers to execute arbitrary code via Location header responses (redirects) with a large number of leading "L" characters.

🔗 References (40)

secalert@redhathttp://bugs.gentoo.org/show_bug.cgi?id=194178
secalert@redhathttp://secunia.com/advisories/27124
secalert@redhathttp://secunia.com/advisories/27362
secalert@redhathttp://secunia.com/advisories/27609
secalert@redhathttp://secunia.com/advisories/27965
secalert@redhathttp://secunia.com/advisories/28930
secalert@redhathttp://secunia.com/advisories/29862
secalert@redhathttp://security.gentoo.org/glsa/glsa-200711-11.xml
secalert@redhathttp://sourceforge.net/forum/forum.php?forum_id=740172
secalert@redhathttp://sourceforge.net/tracker/index.php?func=detail&aid=1687867&group_id=29880&atid=397597
secalert@redhathttp://sourceforge.net/tracker/index.php?func=detail&aid=1813346&group_id=29880&atid=397597
secalert@redhathttp://www.debian.org/security/2008/dsa-1495
secalert@redhathttp://www.mandriva.com/security/advisories?name=MDVSA-2008:067
secalert@redhathttp://www.novell.com/linux/security/advisories/2007_25_sr.html
secalert@redhathttp://www.securityfocus.com/bid/25952

Is Your Infrastructure Affected by CVE-2007-5198?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2007-5198

📅 Published

🔄 Last Modified

🔗 References (40)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2007-5198?