base/logging.c in Nagios Core prior to 4.2.4 allows local users with access to an account in the nagios group to gain root privileges via a symlink attack on the log file. NOTE: this can be leveraged by remote attackers using CVE-2016-9565.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
nagios nagios |