[Forgot Password]
Login  Register Subscribe

30479

 
 

423868

 
 

250770

 
 

909

 
 

196157

 
 

282

 
 
 
Paid content will be excluded from the download.

Filter
Matches : 195419 Download | Alert*

Two security vulnerabilities have been discovered in Cacti, a web interface for graphing of monitoring systems, which could result in unauthenticated command injection or LDAP authentication bypass.

SUSE Security Update: Security update for cacti, cacti-spine

The host is installed with Cacti 1.2.19 and is prone to a security bypass vulnerability. A flaw is present in the application, which fails to properly handle crafted data. Successful exploitation allows attackers to bypass Cacti authentication with certain credential types under certain ldap conditions.

The host is installed with Cacti 1.2.22 and earlier and is prone to a command injection vulnerability. A flaw is present in the application, which fails to handle unspecified vectors. Successful exploitation allows an unauthenticated user to execute arbitrary code on a server running Cacti.

Spine is a supplemental poller for Cacti that makes use of pthreads to achieve excellent performance.

Cacti is a complete frontend to RRDTool. It stores all of the necessary information to create graphs and populate them with data in a MySQL database. The frontend is completely PHP driven.

Cacti is a complete frontend to RRDTool. It stores all of the necessary information to create graphs and populate them with data in a MySQL database. The frontend is completely PHP driven.

Spine is a supplemental poller for Cacti that makes use of pthreads to achieve excellent performance.

Under certain ldap conditions, Cacti authentication can be bypassed with certain credential types

Several vulnerabilities were discovered in Apache Traffic Server, a reverse and forward proxy server, which could result in HTTP request smuggling, cache poisoning or denial of service.


Pages:      Start    11209    11210    11211    11212    11213    11214    11215    11216    11217    11218    11219    11220    11221    11222    ..   19541

© SecPod Technologies