5 matches found
CVE-2013-2029
nagios.upgradetov3.sh, as distributed by Red Hat and possibly others for Nagios Core 3.4.4, 3.5.1, and earlier, allows local users to overwrite arbitrary files via a symlink attack on a temporary nagioscfg file with a predictable name in /tmp/...
CVE-2013-2029
nagios.upgradetov3.sh, as distributed by Red Hat and possibly others for Nagios Core 3.4.4, 3.5.1, and earlier, allows local users to overwrite arbitrary files via a symlink attack on a temporary nagioscfg file with a predictable name in /tmp/...
CVE-2013-2029
CVE-2013-2029 describes a local privilege issue in Nagios Core 3.4.4, 3.5.1 and earlier where a symlink attack on a temporary nagioscfg file in /tmp allows a local user to overwrite arbitrary files. The vulnerability is tied to the nagios.upgrade_to_v3.sh script distributed with these releases. P...
CVE-2013-2029
nagios.upgradetov3.sh, as distributed by Red Hat and possibly others for Nagios Core 3.4.4, 3.5.1, and earlier, allows local users to overwrite arbitrary files via a symlink attack on a temporary nagioscfg file with a predictable name in /tmp/...
Medium: nagios
Issue Overview: nagios.upgradetov3.sh allows local users to overwrite arbitrary files via a symlink attack on a temporary nagioscfg file with a predictable name in /tmp/. Affected Packages: nagios Issue Correction: Run yum update nagios or yum update --advisory ALAS-2013-227 to update your system...