Henrik Storner

8 exploits Active since Aug 2019
CVE-2019-13273 WRITEUP CRITICAL WRITEUP
Xymon < 4.3.28 - Out-of-Bounds Write
In Xymon through 4.3.28, a buffer overflow vulnerability exists in the csvinfo CGI script. The overflow may be exploited by sending a crafted GET request that triggers an sprintf of the srcdb parameter.
CVSS 9.8
CVE-2019-13274 WRITEUP MEDIUM WRITEUP
Xymon < 4.3.28 - XSS
In Xymon through 4.3.28, an XSS vulnerability exists in the csvinfo CGI script due to insufficient filtering of the db parameter.
CVSS 6.1
CVE-2019-13451 WRITEUP CRITICAL WRITEUP
Xymon < 4.3.28 - Memory Corruption
In Xymon through 4.3.28, a buffer overflow vulnerability exists in history.c.
CVSS 9.8
CVE-2019-13452 WRITEUP CRITICAL WRITEUP
Xymon < 4.3.28 - Memory Corruption
In Xymon through 4.3.28, a buffer overflow vulnerability exists in reportlog.c.
CVSS 9.8
CVE-2019-13455 WRITEUP CRITICAL WRITEUP
Xymon < 4.3.28 - Out-of-Bounds Write
In Xymon through 4.3.28, a stack-based buffer overflow vulnerability exists in the alert acknowledgment CGI tool because of &nbsp; expansion in acknowledge.c.
CVSS 9.8
CVE-2019-13484 WRITEUP CRITICAL WRITEUP
Xymon < 4.3.28 - Memory Corruption
In Xymon through 4.3.28, a buffer overflow exists in the status-log viewer CGI because of &nbsp; expansion in appfeed.c.
CVSS 9.8
CVE-2019-13485 WRITEUP CRITICAL WRITEUP
Xymon < 4.3.28 - Out-of-Bounds Write
In Xymon through 4.3.28, a stack-based buffer overflow vulnerability exists in the history viewer component via a long hostname or service parameter to history.c.
CVSS 9.8
CVE-2019-13486 WRITEUP CRITICAL WRITEUP
Xymon < 4.3.28 - Out-of-Bounds Write
In Xymon through 4.3.28, a stack-based buffer overflow exists in the status-log viewer component because of &nbsp; expansion in svcstatus.c.
CVSS 9.8