CVE-2011-2179
published 2011-06-14CVE-2011-2179: Multiple cross-site scripting (XSS) vulnerabilities in config.c in config.cgi in (1) Nagios 3.2.3 and (2) Icinga before 1.4.1 allow remote attackers to inject…
PriorityP433medium4.3CVSS 2.0
AVNACMAuNCNIPAN
EXPLOIT
EPSS
26.04%
97.7th percentile
Multiple cross-site scripting (XSS) vulnerabilities in config.c in config.cgi in (1) Nagios 3.2.3 and (2) Icinga before 1.4.1 allow remote attackers to inject arbitrary web script or HTML via the expand parameter, as demonstrated by an (a) command action or a (b) hosts action.
Affected
16 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| icinga | icinga | <= 1.4.0 | — |
| icinga | icinga | — | — |
| icinga | icinga | — | — |
| icinga | icinga | — | — |
| icinga | icinga | — | — |
| icinga | icinga | — | — |
| icinga | icinga | — | — |
| icinga | icinga | — | — |
| icinga | icinga | — | — |
| icinga | icinga | — | — |
| icinga | icinga | — | — |
| icinga | icinga | — | — |
| icinga | icinga | — | — |
| icinga | icinga | — | — |
| icinga | icinga | >= 0 < 1.10.3-1 | 1.10.3-1 |
| nagios | nagios | — | — |
CVSS provenance
nvdv2.04.3MEDIUMAV:N/AC:M/Au:N/C:N/I:P/A:N
osv4.3MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Ubuntu
Nagios vulnerabilities
vendor_ubuntu·2011-06-15
CVE-2011-1523 Nagios vulnerabilities
Title: Nagios vulnerabilities
Summary: An attacker could modify or steal data if you were tricked into clicking on
a special link to Nagios.
Stefan Schurtz discovered than Nagios did not properly sanitize its input
when processing certain requests, resulting in cross-site scripting (XSS)
vulnerabilities. With cross-site scripting vulnerabilities, if a user were
tricked into viewing server output during a crafted server request, a
remote attacker could exploit this to modify the contents, or steal
confidential data, within the same domain.
Instructions: After a standard system update you need to restart Nagios to make
all the necessary changes.
GHSA
GHSA-p3hf-j3h8-8mqv: Multiple cross-site scripting (XSS) vulnerabilities in config
ghsa_unreviewed·2022-05-17
CVE-2011-2179 [MEDIUM] CWE-79 GHSA-p3hf-j3h8-8mqv: Multiple cross-site scripting (XSS) vulnerabilities in config
Multiple cross-site scripting (XSS) vulnerabilities in config.c in config.cgi in (1) Nagios 3.2.3 and (2) Icinga before 1.4.1 allow remote attackers to inject arbitrary web script or HTML via the expand parameter, as demonstrated by an (a) command action or a (b) hosts action.
GHSA
GHSA-fq47-mp9r-q7w9: Multiple cross-site scripting (XSS) vulnerabilities in config
ghsa_unreviewed·2022-05-17·CVSS 4.3
CVE-2011-2477 [MEDIUM] CWE-79 GHSA-fq47-mp9r-q7w9: Multiple cross-site scripting (XSS) vulnerabilities in config
Multiple cross-site scripting (XSS) vulnerabilities in config.c in config.cgi in Icinga before 1.4.1, when escape_html_tags is disabled, allow remote attackers to inject arbitrary web script or HTML via a JavaScript expression, as demonstrated by the onload attribute of a BODY element located after a check-host-alive! sequence, a different vulnerability than CVE-2011-2179.
OSV
CVE-2011-2179: Multiple cross-site scripting (XSS) vulnerabilities in config
osv·2011-06-07·CVSS 4.3
CVE-2011-2179 [MEDIUM] CVE-2011-2179: Multiple cross-site scripting (XSS) vulnerabilities in config
Multiple cross-site scripting (XSS) vulnerabilities in config.c in config.cgi in (1) Nagios 3.2.3 and (2) Icinga before 1.4.1 allow remote attackers to inject arbitrary web script or HTML via the expand parameter, as demonstrated by an (a) command action or a (b) hosts action.
Suricata
ET WEB_SPECIFIC_APPS Nagios Expand Parameter Cross Site Scripting Attempt
suricata·2011-06-22
CVE-2011-2179 ET WEB_SPECIFIC_APPS Nagios Expand Parameter Cross Site Scripting Attempt
ET WEB_SPECIFIC_APPS Nagios Expand Parameter Cross Site Scripting Attempt
Rule: alert http $EXTERNAL_NET any -> $HOME_NET any (msg:"ET WEB_SPECIFIC_APPS Nagios Expand Parameter Cross Site Scripting Attempt"; flow:established,to_server; http.uri; content:"/nagios/cgi-bin/config.cgi"; nocase; content:"type=command&expand="; fast_pattern; nocase; pcre:"/^.+(?:script|alert|onmouse[a-z]+|onkey[a-z]+|onload|onunload|ondragdrop|onblur|onfocus|onclick|ondblclick|onsubmit|onreset|onselect|onchange)/Ri"; reference:bid,48087; reference:cve,2011-2179; classtype:web-application-attack; sid:2013095; rev:3; metadata:affected_product Web_Server_Applications, attack_target Web_Server, created_at 2011_06_22, cve CVE_2011_2179, deployment Datacenter, signature_severity Major, tag XSS, tag Cross_Site_Scripti
Bugzilla
CVE-2011-2179 nagios: XSS in configuration command expansion [fedora-all]
bugzilla·2011-06-01·CVSS 4.3
CVE-2011-2179 [MEDIUM] CVE-2011-2179 nagios: XSS in configuration command expansion [fedora-all]
CVE-2011-2179 nagios: XSS in configuration command expansion [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected Fedora
versions.
For comments that are specific to the vulnerability please use bugs filed
against "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When creating a Bodhi update request, please include the bug IDs of the
respective parent bugs filed against the "Security Response" product.
Please mention CVE ids in the RPM changelog when available.
Bodhi update submission link:
https://admin.fedoraproject.org/updates/new/?type_=security&bugs=709871
Please note: this issue affects multiple
Bugzilla
CVE-2011-2179 nagios: XSS in configuration command expansion
bugzilla·2011-06-01·CVSS 4.3
CVE-2011-2179 [MEDIUM] CVE-2011-2179 nagios: XSS in configuration command expansion
CVE-2011-2179 nagios: XSS in configuration command expansion
It was reported [1],[2] that an XSS vulnerability exists in Nagios when viewing the configuration and using command expansion, as there is no input validation for "expand" in config.c(gi):
View Config -> Command Expansion -> To expand -> alert(String.fromCharCode(88,83,83))
View Config -> Command Expansion -> To expand ->
or
http://www.example.com/nagios/cgi-bin/config.cgi?type=command&expand=alert(String.fromCharCode(88,83,83)) [^]
http://www.example.com/nagios/cgi-bin/config.cgi?type=command&expand=
[1] http://tracker.nagios.org/view.php?id=224
[2] http://seclists.org/bugtraq/2011/Jun/17
Discussion:
Created nagios tracking bugs for this issue
Affects: fedora-all [bug 709874]
Affects: epel-6 [bug 690880]
---
The CVE id
Bugzilla
CVE-2011-2179 nagios various flaws [epel-6]
bugzilla·2011-03-25·CVSS 4.3
CVE-2011-2179 [MEDIUM] CVE-2011-2179 nagios various flaws [epel-6]
CVE-2011-2179 nagios various flaws [epel-6]
epel-6 tracking bug for nagios: see blocks bug list for full details of the security issue(s).
This bug is never intended to be made public, please put any public notes
in the 'blocks' bugs.
[bug automatically created by: add-tracking-bugs]
Discussion:
Adding parent bug 709871
New bodhi update url:
https://admin.fedoraproject.org/updates/new/?type_=security&bugs=690877,709871
---
nagios-3.3.1-1.fc16 has been submitted as an update for Fedora 16.
https://admin.fedoraproject.org/updates/nagios-3.3.1-1.fc16
---
nagios-3.3.1-1.fc15 has been submitted as an update for Fedora 15.
https://admin.fedoraproject.org/updates/nagios-3.3.1-1.fc15
---
nagios-3.3.1-1.el6 has been submitted as an update for Fedora EPEL 6.
https://admin.fedoraproject.o
http://archives.neohapsis.com/archives/bugtraq/2011-06/0017.htmlhttp://archives.neohapsis.com/archives/bugtraq/2011-06/0018.htmlhttp://secunia.com/advisories/44974http://securityreason.com/securityalert/8274http://tracker.nagios.org/view.php?id=224http://www.openwall.com/lists/oss-security/2011/06/01/10http://www.openwall.com/lists/oss-security/2011/06/02/6http://www.rul3z.de/advisories/SSCHADV2011-005.txthttp://www.rul3z.de/advisories/SSCHADV2011-006.txthttp://www.securityfocus.com/bid/48087http://www.ubuntu.com/usn/USN-1151-1https://bugzilla.redhat.com/show_bug.cgi?id=709871https://dev.icinga.org/issues/1605https://exchange.xforce.ibmcloud.com/vulnerabilities/67797http://archives.neohapsis.com/archives/bugtraq/2011-06/0017.htmlhttp://archives.neohapsis.com/archives/bugtraq/2011-06/0018.htmlhttp://secunia.com/advisories/44974http://securityreason.com/securityalert/8274http://tracker.nagios.org/view.php?id=224http://www.openwall.com/lists/oss-security/2011/06/01/10http://www.openwall.com/lists/oss-security/2011/06/02/6http://www.rul3z.de/advisories/SSCHADV2011-005.txthttp://www.rul3z.de/advisories/SSCHADV2011-006.txthttp://www.securityfocus.com/bid/48087http://www.ubuntu.com/usn/USN-1151-1https://bugzilla.redhat.com/show_bug.cgi?id=709871https://dev.icinga.org/issues/1605https://exchange.xforce.ibmcloud.com/vulnerabilities/67797
2011-06-14
Published