FreeBSD : ganglia -- buffer overflow vulnerability (b9077cc4-6d04-4bcb-a37a-9ceaebfdcc9e)
High Nessus Plugin ID 35564
SynopsisThe remote FreeBSD host is missing one or more security-related updates.
DescriptionSecunia reports :
Spike Spiegel has discovered a vulnerability in Ganglia which can be exploited by malicious people to compromise a vulnerable system. The vulnerability is caused due to a boundary error within the process_path function in gmetad/server.c. This can be exploited to cause a stack-based buffer overflow by e.g. sending a specially crafted message to the gmetad service.
The vulnerability is confirmed in version 3.1.1. Other versions may also be affected.
SolutionUpdate the affected packages.