MagpieRSS, as used in the front-end component in Nagios Core prior to 4.2.2 might allow remote malicious users to read or write to arbitrary files by spoofing a crafted response from the Nagios RSS feed server. NOTE: this vulnerability exists because of an incomplete fix for CVE-2008-4796.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
nagios nagios |