CVE-2008-6373
Nagios < 3.0.6 - Remote Code Execution via Adaptive External Commands
Title source: llmDescription
Unspecified vulnerability in Nagios before 3.0.6 has unspecified impact and remote attack vectors related to CGI programs, "adaptive external commands," and "writing newlines and submitting service comments."
References (10)
Core 10
Core References
Patch, Vendor Advisory x_refsource_confirm
http://www.nagios.org/news/#88
Patch, Vendor Advisory x_refsource_confirm
http://www.nagios.org/development/history/nagios-3x.php
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/47081
Third Party Advisory vendor-advisory
x_refsource_gentoo
http://security.gentoo.org/glsa/glsa-200907-15.xml
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id?1022165
Mailing List vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=124156641928637&w=2
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/32909
Third Party Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2009/1256
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/35002
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/32611
Scores
EPSS
0.0031
EPSS Percentile
54.5%
Details
CWE
CWE-94
Status
published
Products (36)
nagios/nagios
1.0
nagios/nagios
1.0_b1
nagios/nagios
1.0_b2
nagios/nagios
1.0_b3
nagios/nagios
1.0b1
nagios/nagios
1.0b2
nagios/nagios
1.0b3
nagios/nagios
1.0b4
nagios/nagios
1.0b5
nagios/nagios
1.0b6
... and 26 more
Published
Mar 02, 2009
Tracked Since
Feb 18, 2026