Monit 1.4 to 4.1 allows remote attackers to cause a denial of service (daemon crash) via an HTTP POST request with a negative Content-Length field.
https://exchange.xforce.ibmcloud.com/vulnerabilities/13818
http://www.tildeslash.com/monit/dist/CHANGES.txt
http://www.securityfocus.com/bid/9098
http://www.kb.cert.org/vuls/id/206382