|Category:||Web application abuses|
|Title:||Cacti RCE Vulnerability (Windows)|
|Summary:||lib/rrd.php in Cacti 1.1.27 allows remote authenticated administrators; to execute arbitrary OS commands via the path_rrdtool parameter in an action=save request to settings.php.|
lib/rrd.php in Cacti 1.1.27 allows remote authenticated administrators
to execute arbitrary OS commands via the path_rrdtool parameter in an action=save request to settings.php.
Cacti version 1.1.27.
No solution or patch is available as of 8th November, 2017. Information regarding this issue
will be updated once the solution details are available. For possible updates or patches refer to: https://github.com/Cacti/cacti
Common Vulnerability Exposure (CVE) ID: CVE-2017-16641|
|Copyright||This script is Copyright (C) 2017 Greenbone Networks GmbH|
|This is only one of 58962 vulnerability tests in our test suite. Find out more about running a complete security audit.|
To run a free test of this vulnerability against your system, register below.