CVE-2004-1899

NameCVE-2004-1899
DescriptionThe administration interface in Monit 1.4 through 4.2 allows remote attackers to cause an off-by-one overflow via a POST that contains 1024 bytes.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
monit (PTS)jessie, jessie (lts)1:5.9-1+deb8u3fixed
stretch (security)1:5.20.0-6+deb9u2fixed
stretch (lts), stretch1:5.20.0-6+deb9u3fixed
bullseye1:5.27.2-1fixed
bookworm1:5.33.0-1fixed
trixie1:5.34.0-1fixed
sid1:5.34.2-1fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
monitsource(unstable)1:4.2.1

Search for package or bug name: Reporting problems