Multiple Monit Administration Interface Remote Vulnerabilities

BID:10051

Info

Multiple Monit Administration Interface Remote Vulnerabilities

Bugtraq ID: 10051
Class: Unknown
CVE:
Remote: Yes
Local: No
Published: Apr 05 2004 12:00AM
Updated: Apr 05 2004 12:00AM
Credit: Discovery of this vulnerability has been credited to [email protected] <[email protected]>.
Vulnerable: TildeSlash Monit 4.3 Beta 2
TildeSlash Monit 4.2
TildeSlash Monit 4.1.1
TildeSlash Monit 4.1
TildeSlash Monit 4.0
TildeSlash Monit 3.2
TildeSlash Monit 3.1
TildeSlash Monit 3.0
Not Vulnerable: TildeSlash Monit 4.3 Beta 3
TildeSlash Monit 4.2.1

Discussion

Multiple Monit Administration Interface Remote Vulnerabilities

The remote administration interface of Monit has been reported to be prone to multiple vulnerabilities.

The first issue reported may be exploited by a remote attacker to trigger a denial of service. The issue presents itself when no password is submitted as a part of a basic authentication request.

The second vulnerability, a stack-based buffer overflow vulnerability has been reported to exist during basic authentication procedures. The issue presents itself due to a lack of sufficient bounds checking performed on user-supplied usernames.

A third issue, an off-by-one vulnerability, has also been reported to affect Monit. The issue presents itself when a large POST submission is handled. Depending on memory layout and compiler optimizations, this issue may potentially be exploited on some platforms to allow an attacker to influence the least significant byte of the stack frame base pointer.

Exploit / POC

Multiple Monit Administration Interface Remote Vulnerabilities

An exploit for the stack-based buffer overflow vulnerability has been provided by THE EYE ON SECURITY RESEARCH GROUP - INDIA <http://www.eos-india.net>:

Solution / Fix

Multiple Monit Administration Interface Remote Vulnerabilities

Solution:
Netwosix Linux has released advisory LNSA-#2004-0008 and fixes for the off-by-one error and the stack overflow in the authentication functionality. Please see the attached advisory for more information.

Gentoo has released updates to address this issue, which may be applied with the following commands:
emerge sync
emerge -pv ">=app-admin/monit-4.2.1"
emerge ">=app-admin/monit-4.2.1"

The vendor has released fixes to address these issues:


TildeSlash Monit 3.0

TildeSlash Monit 3.1

TildeSlash Monit 3.2

TildeSlash Monit 4.0

TildeSlash Monit 4.1

TildeSlash Monit 4.1.1

TildeSlash Monit 4.2

TildeSlash Monit 4.3 Beta 2

References

Multiple Monit Administration Interface Remote Vulnerabilities

References:
© CVE.report 2026 |

Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.

CVE, CWE, and OVAL are registred trademarks of The MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. This site includes MITRE data granted under the following license.

Free CVE JSON API cve.report/api

CVE.report and Source URL Uptime Status status.cve.report