SuSE Update For Cacti SUSE-SA:2007:007 Network Vulnerability

Impact

remote code execution

Solution

Please Install the Updated Packages.

Insight

A command injection in cmd.php in cacti was fixed, which might have allowed remote attackers to inject commands and so execute code. This issue is tracked by the Mitre CVE ID CVE-2006-6799.

Affected

cacti on openSUSE 10.2, SUSE LINUX 10.1

References

http://www.novell.com/linux/security/advisories/2007_07_cacti.html

Updated on 2015-03-25

Severity

Classification

CVE CVE-2006-6799
CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

Related Vulnerabilities

SLES10: Security update for libtiff
SLES10: Security update for nagios
SLES10: Security update for GnuTLS
SLES10: Security update for Cyrus IMAPD
SLES10: Security update for mutt

SuSE Update for cacti SUSE-SA:2007:007

Take action and discover your vulnerabilities