CVE-2013-2029
CVE-2013-2029
nagios.upgrade_to_v3.sh, as distributed by Red Hat and possibly others for Nagios Core 3.4.4, 3.5.1, and earlier, allows local users to overwrite arbitrary files via a symlink attack on a temporary nagioscfg file with a predictable name in /tmp/.
Affected products
n/a · n/aWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →