CVE-2013-4215

Name of the Vulnerable Software and Affected Versions Nagios Plugins version 1.4.16

Description The issue allows local users to gain privileges via a symlink attack on /tmp/ipxping/ipxping. This is related to the IPXPING COMMAND in contrib/check ipxping.c.

Recommendations For Nagios Plugins version 1.4.16, consider restricting access to the /tmp/ipxping/ipxping file to prevent a symlink attack. Additionally, monitor the system for any suspicious activity related to the IPXPING COMMAND. At the moment, there is no information about a newer version that contains a fix for this vulnerability.