CVE-2003-1084

Name of the Vulnerable Software and Affected Versions Monit versions 1.4 through 4.1

Description The issue allows remote attackers to cause a denial of service, potentially leading to a daemon crash, via an HTTP POST request with a negative Content-Length field. Multiple vulnerabilities in the Monit package can lead to breaches of confidentiality, integrity, and availability of protected information, and these can be exploited remotely.

Recommendations For Monit versions 1.4 through 4.1, consider disabling HTTP POST requests until a patch is available. Restrict access to the Monit daemon to minimize the risk of exploitation. Avoid using negative values for the Content-Length field in HTTP POST requests to the Monit daemon until the issue is resolved.