CVE-2009-0241

EUVD-2009-0249
Stack-based buffer overflow in the process_path function in gmetad/server.c in Ganglia 3.1.1 allows remote attackers to cause a denial of service (crash) via a request to the gmetad service with a long pathname.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
Base Score
CVSS 3.x
EPSS Score
Percentile: 93%
Affected Products (NVD)
VendorProductVersion
gangliaganglia
3.1.1
𝑥
= Vulnerable software versions
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
ganglia
dapper
dne
gutsy
dne
hardy
dne
intrepid
dne
jaunty
dne
karmic
not-affected
lucid
not-affected
maverick
not-affected
natty
not-affected
oneiric
not-affected
ganglia-monitor-core
dapper
ignored
gutsy
ignored
hardy
ignored
intrepid
ignored
jaunty
ignored
karmic
dne
lucid
dne
maverick
dne
natty
dne
oneiric
dne
Common Weakness Enumeration
References
http://bugzilla.ganglia.info/cgi-bin/bugzilla/show_bug.cgi?id=223
http://lists.opensuse.org/opensuse-security-announce/2009-06/msg00003.html
http://secunia.com/advisories/33506
http://secunia.com/advisories/34228
http://secunia.com/advisories/35416
http://security.gentoo.org/glsa/glsa-200903-22.xml
http://www.mail-archive.com/ganglia-developers%40lists.sourceforge.net/msg04929.html
http://www.securityfocus.com/bid/33299
http://bugzilla.ganglia.info/cgi-bin/bugzilla/show_bug.cgi?id=223
http://lists.opensuse.org/opensuse-security-announce/2009-06/msg00003.html
http://secunia.com/advisories/33506
http://secunia.com/advisories/34228
http://secunia.com/advisories/35416
http://security.gentoo.org/glsa/glsa-200903-22.xml
http://www.mail-archive.com/ganglia-developers%40lists.sourceforge.net/msg04929.html
http://www.securityfocus.com/bid/33299