Описание
Security update for cacti, cacti-spine
This update for cacti, cacti-spine to version 1.1.28 fixes the following issues:
- CVE-2017-16641: Potential code execution vulnerability in RRDtool functions (boo#1067166)
- CVE-2017-16660: Remote execution vulnerability in logging function (boo#1067164)
- CVE-2017-16661: Arbitrary file read vulnerability in view log file (boo#1067163)
- CVE-2017-16785: Reflection XSS vulnerability (boo#1068028)
This update to version 1.1.28 also contains a number of upstream bug fixes and improvements.
Список пакетов
openSUSE Leap 42.2
openSUSE Leap 42.3
Ссылки
- E-Mail link for openSUSE-SU-2017:3051-1
- SUSE Security Ratings
Описание
lib/rrd.php in Cacti 1.1.27 allows remote authenticated administrators to execute arbitrary OS commands via the path_rrdtool parameter in an action=save request to settings.php.
Затронутые продукты
Ссылки
- CVE-2017-16641
- SUSE Bug 1067166
Описание
Cacti 1.1.27 allows remote authenticated administrators to conduct Remote Code Execution attacks by placing the Log Path under the web root, and then making a remote_agent.php request containing PHP code in a Client-ip header.
Затронутые продукты
Ссылки
- CVE-2017-16660
- SUSE Bug 1067164
Описание
Cacti 1.1.27 allows remote authenticated administrators to read arbitrary files by placing the Log Path into a private directory, and then making a clog.php?filename= request, as demonstrated by filename=passwd (with a Log Path under /etc) to read /etc/passwd.
Затронутые продукты
Ссылки
- CVE-2017-16661
- SUSE Bug 1067163
Описание
Cacti 1.1.27 has reflected XSS via the PATH_INFO to host.php.
Затронутые продукты
Ссылки
- CVE-2017-16785
- SUSE Bug 1068028