CVE-2011-10035

Name of the Vulnerable Software and Affected Versions Nagios XI versions prior to 2011R1.9

Description The software contains privilege escalation issues within scripts used for installing or updating system crontab entries. A local user with limited privileges could exploit time-of-check/time-of-use race conditions and a lack of proper synchronization or path validation to manipulate the filesystem during crontab installation. This manipulation could lead to the execution of commands with elevated privileges.

Recommendations Update to version 2011R1.9 or later.