Cacti 'Linux - Get Memory Usage' Remote Command Execution Vulnerability Network Vulnerability

Summary

Cacti is prone to a remote command-execution vulnerability because the software fails to adequately sanitize user-supplied input. Successful attacks can compromise the affected software and possibly the computer.

References

http://archives.neohapsis.com/archives/fulldisclosure/2009-11/0292.html
http://cacti.net/
http://www.securityfocus.com/bid/37137

Updated on 2015-03-25

Severity

Classification

CVE CVE-2009-4112

CVSS	Base Score: 9.0 AV:N/AC:L/Au:S/C:C/I:C/A:C

Related Vulnerabilities

ALCASAR Remote Code Execution Vulnerability
AIOCP 'cp_html2xhtmlbasic.php' Remote File Inclusion Vulnerability
ASAS Server End User Self Service (EUSS) SQL Injection Vulnerability
Apache Tomcat/JBoss EJBInvokerServlet / JMXInvokerServlet (RMI over HTTP) Marshalled Object Remote Code Execution
ARRIS 2307 Unprotected Web Console

Take action and discover your vulnerabilities