Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2009-4112

Опубликовано: 30 нояб. 2009
Источник: debian

Описание

Cacti 0.8.7e and earlier allows remote authenticated administrators to gain privileges by modifying the "Data Input Method" for the "Linux - Get Memory Usage" setting to contain arbitrary commands.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
cactifixed1.2.0~beta2+ds1-1experimentalpackage
cactifixed1.2.1+ds1-1package

Примечания

  • 4B0E1566.1070509@moritz-naumann.com in bugtraq

  • as one requires admin access to cacti, upstream will implement a whitelist

  • https://github.com/Cacti/cacti/issues/1072

Связанные уязвимости

ubuntu логотип

CVE-2009-4112

ubuntu
около 16 лет назад

Cacti 0.8.7e and earlier allows remote authenticated administrators to gain privileges by modifying the "Data Input Method" for the "Linux - Get Memory Usage" setting to contain arbitrary commands.

redhat логотип

CVE-2009-4112

redhat
около 16 лет назад

Cacti 0.8.7e and earlier allows remote authenticated administrators to gain privileges by modifying the "Data Input Method" for the "Linux - Get Memory Usage" setting to contain arbitrary commands.

nvd логотип

CVE-2009-4112

nvd
около 16 лет назад

Cacti 0.8.7e and earlier allows remote authenticated administrators to gain privileges by modifying the "Data Input Method" for the "Linux - Get Memory Usage" setting to contain arbitrary commands.

github логотип

GHSA-p256-rcj4-whc9

github
почти 4 года назад

Cacti 0.8.7e and earlier allows remote authenticated administrators to gain privileges by modifying the "Data Input Method" for the "Linux - Get Memory Usage" setting to contain arbitrary commands.

suse-cvrf логотип

openSUSE-SU-2020:0272-1

suse-cvrf
почти 6 лет назад

Security update for cacti, cacti-spine