PT-2013-4903 · Nagios · Nagios Core

Grant Murphy

Publicado

2013-11-23

Atualizado

2024-06-15

CVE-2013-4214

CVSS v2.0

6.3

Média

Vetor

AV:L/AC:M/Au:N/C:N/I:C/A:C

Name of the Vulnerable Software and Affected Versions Nagios Core versions 3.4.4, 3.5.1, and earlier

Description The issue allows local users to overwrite arbitrary files via a symlink attack on /tmp/magpie cache when MAGPIE CACHE ON is set to 1. This is related to the rss-newsfeed.php file.

Recommendations For Nagios Core versions 3.4.4, 3.5.1, and earlier, consider disabling the MAGPIE CACHE ON feature to prevent symlink attacks until a patch is available. Restrict access to the /tmp/magpie cache directory to minimize the risk of exploitation. Avoid using the rss-newsfeed.php file with MAGPIE CACHE ON set to 1 until the issue is resolved.

Correção

Link Following

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-59

Identificadores relacionados

CVE-2013-4214

OPENSUSE-SU-2024:11073-1

RHSA-2013:1526

Produtos afetados

Nagios Core

PT-2013-4903 · Nagios · Nagios Core

CVE-2013-4214

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 23