PT-2005-2517 · Cacti · Cacti

Maciej Piotr Falkiewicz

Published

2005-06-22

Updated

2017-07-11

CVE-2005-1524

CVSS v2.0

5.0

Medium

Vector

AV:N/AC:L/Au:N/C:N/I:P/A:N

Name of the Vulnerable Software and Affected Versions Cacti versions 0.8.6d and earlier

Description A PHP file inclusion issue in the top graph header.php file allows remote attackers to execute arbitrary PHP code via the config[library path] parameter.

Recommendations For Cacti versions 0.8.6d and earlier, update to a version that fixes this issue to prevent remote attackers from executing arbitrary PHP code.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2005-1524

DSA-764-1

Affected Products

Cacti

PT-2005-2517 · Cacti · Cacti

CVE-2005-1524

Related Identifiers

Affected Products

References · 18