Oval Definition:
oval:com.ubuntu.xenial:def:201716641000
Revision Date
:
2017-11-07
Version
:
1
Title
:
CVE-2017-16641 on Ubuntu 16.04 LTS (xenial) - medium.
Description
:
lib/rrd.php in Cacti 1.1.27 allows remote authenticated administrators to execute arbitrary OS commands via the path_rrdtool parameter in an action=save request to settings.php.
Family
:
unix
Class
:
vulnerability
Status
:
Reference(s)
:
CVE-2017-16641
Platform(s)
:
Ubuntu 16.04 LTS
Product(s)
:
Definition Synopsis
Ubuntu 16.04 LTS (xenial) is installed.
AND
The 'cacti' package in xenial is affected and needs fixing.
BACK