Detections
Analytics
Tembria Server Monitor < 5.6.1 Denial of Service
medium Nessus Plugin ID 46203
Language:
Synopsis
The remote web server hosts a server-monitoring application that is affected by a remote buffer overflow vulnerability.Description
The remote host is running a version of Tembria Server Monitor earlier than 5.6.1. Such versions are reportedly affected by a buffer overflow vulnerability when handling specially crafted HTTP requests. An attacker, exploiting this flaw, could crash the affected service.Solution
Upgrade to Tembria Server Monitor 5.6.1 or later.See Also
http://www.corelan.be:8800/advisories.php?id=CORELAN-10-022
https://seclists.org/fulldisclosure/2010/Apr/133
http://www.tembria.com/products/servermonitor/versionhistory.html
Plugin Details
Severity: Medium
ID: 46203
File Name: tembria_server_monitor_561.nasl
Version: 1.8
Type: remote
Family: Web Servers
Published: 4/30/2010
Updated: 11/15/2018
Supported Sensors: Nessus
Risk Information
VPR
Risk Factor: Medium
Score: 5.1
CVSS v2
Risk Factor: Medium
Base Score: 5
Temporal Score: 4.1
Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P
Vulnerability Information
Required KB Items: www/tembria_monitor
Exploit Available: true
Exploit Ease: Exploits are available
Patch Publication Date: 4/8/2010
Vulnerability Publication Date: 4/8/2010
Exploitable With
Core Impact
Reference Information
CVE: CVE-2010-1316
BID: 39638
Secunia: 39270