A local user can trigger a heap buffer overflow in check_icmp by supplying more than 65535 target hosts, which overflows an internal counter. This occurs before check_icmp drops its privileges, allowing for potential memory corruption while still running as root on setuid-root installations.
| Vendor | Product | Versions |
|---|---|---|
| monitoring plugins | check_icmp | 3.0.0 |