Advisory:
Nagios Plugin 'check_ups' Local Buffer Overflow
Advisory ID:
SSCHADV2011-040
Author:
Stefan Schurtz
Affected Software:
Successfully tested on nagios-plugins-1.4.15
Vendor URL:
Vendor Status:
informed
EDB-ID:
18278
==========================
Vulnerability Description:
==========================
The Nagios plugin 'check_ups' is prone to a Buffer Overflow
Continue reading "SSCHADV2011-040 - Nagios Plugin 'check_ups' Local Buffer Overflow"
Posted by on Saturday, March 12. 2011
Advisory:
Cross-Site Scripting vulnerability in Icinga
Advisory ID:
SSCHADV2011-003
Author:
Stefan Schurtz
Affected Software:
Successfully tested on: icinga-1.3.0 / icinga-1.2.1
Vendor URL :
http://www.icinga.org
Vendor Status:
statusmap.cgi: fixed XSS vulnerability #1281
Target version set to 1.4
OSVDB -ID:
71052
======================
Vulnerability Description:
======================
This is a Cross-Site Scripting vulnerability
JavaScript can be included in style sheets by using "expression()" (IE only)
==============
Technical Details:
==============
Continue reading "SSCHADV2011-003 - Cross-Site Scripting vulnerability in Icinga"
Advisory:
Cross-Site Scripting vulnerability in Nagios
Advisory ID:
SSCHADV2011-002
Author:
Stefan Schurtz
Affected Software:
Successfully tested on: nagios-3.2.0 / nagios-3.2.3
Vendor URL :
http://www.nagios.org
Vendor Status:
fixed
CVE -ID:
2011-1523
OSVDB -ID:
71059
======================
Vulnerability Description:
======================
This is a Cross-Site Scripting vulnerability
JavaScript can be included in style sheets by using "expression()" (IE only)
==============
Technical Details:
==============
Continue reading "SSCHADV2011-002 - Cross-Site Scripting vulnerability in Nagios"
Advisory:
Cross-Site Scripting vulnerabilities in Icinga
Advisory ID:
SSCHADV2011-001
Author:
Stefan Schurtz
Affected Software:
Successfully tested on icinga-1.3.0 / icinga-1.2.1
Vendor URL :
http://www.icinga.org
Vendor Status:
fixed csv export link to make it XSS save (IE) #1275
OSVDB -ID:
71050
======================
Vulnerability Description:
======================
This is Cross-Site Scripting vulnerability
==============
Technical Details:
==============
Continue reading "SSCHADV2011-001 - Cross-Site Scripting vulnerabilities in Icinga"
Posted by on Thursday, February 26. 2009
UCARP -Master
#!/bin/sh
virtuelle_ip=192.168.0.1
interface=eth1:1
/sbin/ifconfig $interface | grep $virtuelle_ip &> /dev/null
if [ $? = 1 ]; then
echo "CRITICAL – Virtual IP $ip on master"
exit 1
else
/sbin/ifconfig $interface | grep $virtuelle_ip | cut -f 2 -d ":" | while read output;
do
ip=$(echo $output | awk ‘{print $1}’ )
echo "OK – Virtual IP on master"
exit 0
done
fi
UCARP -Slave
#!/bin/sh
virtuelle_ip=192.168.0.1
interface=eth1:1
/sbin/ifconfig $interface | grep $virtuelle_ip &> /dev/null
if [ $? = 1 ]; then
echo "OK – No Virtual IP on slave"
exit 0
else
/sbin/ifconfig $interface | grep $virtuelle_ip | cut -f 2 -d ":" | while read output;
do
ip=$(echo $output | awk ‘{print $1}’ )
echo "CRITICAL – Virtual IP $ip on slave"
exit 1
done
fi
Posted by on Wednesday, February 25. 2009
Plugin zum Überwachen des Arbeitsspeichers
#!/bin/sh
free -m | grep Mem | while read output;
do
mem=$(echo $output | awk ‘{print $2}’ )
used=$(echo $output | awk ‘{ print $3 }’ )
free=$(echo $output | awk ‘{ print $4 }’ )
use=`expr $used \* 100 / $mem`
if [ $use -ge 90 ]; then
echo "CRITICAL Total Mem: \"$mem\" Used: \"$used ($use%)\" Free: \"$free\" "
exit 2
elif [ $usep -ge 50 ]; then
echo "WARNING Total Mem: \"$mem\" Used: \"$used ($use%)\" Free: \"$free\" "
exit 1
else
echo "OK Mem: $mem" "Used: $used" "Free: $free"
exit 0
fi
done
Plugin zum Überwachen des Swap
#!/bin/sh
free -m | grep Swap | while read output;
do
swap=$(echo $output | awk ‘{print $2}’ )
used=$(echo $output | awk ‘{ print $3 }’ )
free=$(echo $output | awk ‘{ print $4 }’ )
use=`expr $used \* 100 / $swap`
if [ $use -ge 90 ]; then
echo "CRITICAL Swap: \"$swap\" Used: \"$used ($use%)\" Free: \"$free\" "
exit 2
elif [ $use -ge 50 ]; then
echo "WARNING Swap: \"$swap\" Used: \"$used ($use%)\" Free: \"$free\" "
exit 1
else
echo "OK Swap: $swap" "Used: $used" "Free: $free"
exit 0
fi
done