Buffer Overflow Vulnerability in Xymon CSVInfo CGI Script

Buffer Overflow Vulnerability in Xymon CSVInfo CGI Script

CVE-2019-13273 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

In Xymon through 4.3.28, a buffer overflow vulnerability exists in the csvinfo CGI script. The overflow may be exploited by sending a crafted GET request that triggers an sprintf of the srcdb parameter.

Learn more about our Web Application Penetration Testing UK.