#VU18413 Out-of-bounds read in Tildeslash Monit - CVE-2019-11455

Cybersecurity Help s.r.o.

Published: 2019-05-09

Vulnerability identifier: #VU18413

Vulnerability risk: Low

CVSSv4.0: 1.3 [CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2019-11455

CWE-ID: CWE-125

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
Tildeslash Monit
Web applications / Remote management & hosting panels

Vendor: Atlassian

Description

The vulnerability allows a remote attacker to gain access to potentially sensitive information.

The vulnerability exists due to a boundary condition when processing parameters passed via HTTP GET or POST requests within the Util_urlDecode() function in util.c. A remote authenticated attacker can send a specially crafted HTTP request to the affected application, trigger out-of-bounds read error and read contents of memory.

Mitigation
Install update from vendor's website.

Vulnerable software versions

Tildeslash Monit: 5.7 - 5.25.2

External links
https://bitbucket.org/tildeslash/monit/commits/f12d0cdb42d4e74dffe1525d4062c815c48ac57a
https://github.com/dzflack/exploits/blob/master/macos/monit_dos.py
https://github.com/dzflack/exploits/blob/master/unix/monit_buffer_overread.py
https://lists.debian.org/debian-lts-announce/2019/04/msg00028.html
https://usn.ubuntu.com/3971-1/

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Fedora 31 update for monit

Fedora 32 update for monit

Fedora EPEL 7 update for monit

Out-of-bounds read in monit (Alpine package)

Multiple vulnerabilities in Tildeslash Monit

Ubuntu update for Monit