Test ID:	1.3.6.1.4.1.25623.1.0.67914
Category:	Mandrake Local Security Checks
Title:	Mandriva Security Advisory MDVSA-2010:160 (cacti)
Summary:	NOSUMMARY
Description:	Description: The remote host is missing an update to cacti announced via advisory MDVSA-2010:160. Multiple vulnerabilities has been found and corrected in cacti: Multiple cross-site scripting (XSS) vulnerabilities in Cacti before 0.8.7f, allow remote attackers to inject arbitrary web script or HTML via the (1) hostname or (2) description parameter to host.php, or (3) the host_id parameter to data_sources.php (CVE-2010-1644). Cacti before 0.8.7f, allows remote authenticated administrators to execute arbitrary commands via shell metacharacters in (1) the FQDN field of a Device or (2) the Vertical Label field of a Graph Template (CVE-2010-1645). Cross-site scripting (XSS) vulnerability in include/top_graph_header.php in Cacti before 0.8.7g allows remote attackers to inject arbitrary web script or HTML via the graph_start parameter to graph.php. NOTE: this vulnerability exists because of an incorrect fix for CVE-2009-4032.2.b (CVE-2010-2543). Cross-site scripting (XSS) vulnerability in utilities.php in Cacti before 0.8.7g, allows remote attackers to inject arbitrary web script or HTML via the filter parameter (CVE-2010-2544). Multiple cross-site scripting (XSS) vulnerabilities in Cacti before 0.8.7g, allow remote attackers to inject arbitrary web script or HTML via (1) the name element in an XML template to templates_import.php and allow remote authenticated administrators to inject arbitrary web script or HTML via vectors related to (2) cdef.php, (3) data_input.php, (4) data_queries.php, (5) data_sources.php, (6) data_templates.php, (7) gprint_presets.php, (8) graph.php, (9) graphs_new.php, (10) graphs.php, (11) graph_templates_inputs.php, (12) graph_templates_items.php, (13) graph_templates.php, (14) graph_view.php, (15) host.php, (16) host_templates.php, (17) lib/functions.php, (18) lib/html_form.php, (19) lib/html_form_template.php, (20) lib/html.php, (21) lib/html_tree.php, (22) lib/rrd.php, (23) rra.php, (24) tree.php, and (25) user_admin.php (CVE-2010-2545). This update provides cacti 0.8.7f, which is not vulnerable to these issues. Affected: Corporate 4.0, Enterprise Server 5.0 Solution: To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. http://www.securityspace.com/smysecure/catid.html?in=MDVSA-2010:160 Risk factor : High CVSS Score: 6.5
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2010-1644 20100521 Cacti Multiple Parameter Cross Site Scripting Vulnerabilities http://www.securityfocus.com/archive/1/511393 40332 http://www.securityfocus.com/bid/40332 41041 http://secunia.com/advisories/41041 ADV-2010-1203 http://www.vupen.com/english/advisories/2010/1203 ADV-2010-2132 http://www.vupen.com/english/advisories/2010/2132 MDVSA-2010:160 http://www.mandriva.com/security/advisories?name=MDVSA-2010:160 RHSA-2010:0635 https://rhn.redhat.com/errata/RHSA-2010-0635.html http://svn.cacti.net/viewvc?view=rev&revision=5901 http://www.cacti.net/release_notes_0_8_7f.php https://bugzilla.redhat.com/show_bug.cgi?id=609093 Common Vulnerability Exposure (CVE) ID: CVE-2010-1645 http://svn.cacti.net/viewvc?view=rev&revision=5778 http://svn.cacti.net/viewvc?view=rev&revision=5782 http://svn.cacti.net/viewvc?view=rev&revision=5784 http://www.bonsai-sec.com/en/research/vulnerabilities/cacti-os-command-injection-0105.php https://bugzilla.redhat.com/show_bug.cgi?id=609115 Common Vulnerability Exposure (CVE) ID: CVE-2009-4032 20091125 Cacti 0.8.7e: Multiple security issues http://archives.neohapsis.com/archives/fulldisclosure/2009-11/0292.html 20091126 Cacti 0.8.7e: Multiple security issues http://www.securityfocus.com/archive/1/508129/100/0/threaded 37109 http://www.securityfocus.com/bid/37109 37481 http://secunia.com/advisories/37481 37934 http://secunia.com/advisories/37934 38087 http://secunia.com/advisories/38087 60483 http://www.osvdb.org/60483 ADV-2009-3325 http://www.vupen.com/english/advisories/2009/3325 FEDORA-2009-12560 https://www.redhat.com/archives/fedora-package-announce/2010-January/msg00166.html FEDORA-2009-12575 https://www.redhat.com/archives/fedora-package-announce/2009-December/msg01390.html JVN#09758120 http://jvn.jp/en/jp/JVN09758120/index.html JVNDB-2009-003901 http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-003901.html [oss-security] 20091125 CVE Request - Cacti - 0.8.7e http://www.openwall.com/lists/oss-security/2009/11/25/2 [oss-security] 20091125 Re: CVE Request - Cacti - 0.8.7e http://www.openwall.com/lists/oss-security/2009/11/25/4 [oss-security] 20091126 Re: CVE Request - Cacti - 0.8.7e http://www.openwall.com/lists/oss-security/2009/11/26/1 [oss-security] 20091130 Re: CVE Request - Cacti - 0.8.7e http://www.openwall.com/lists/oss-security/2009/11/30/2 cacti-name-xss(54388) https://exchange.xforce.ibmcloud.com/vulnerabilities/54388 http://bugs.gentoo.org/show_bug.cgi?id=294573 http://docs.cacti.net/#cross-site_scripting_fixes http://www.cacti.net/download_patches.php http://www.cacti.net/downloads/patches/0.8.7e/cross_site_fix.patch Common Vulnerability Exposure (CVE) ID: CVE-2010-2543 [oss-security] 20100722 Cacti XSS fixes in 0.8.7g http://marc.info/?l=oss-security&m=127978954522586&w=2 [oss-security] 20100726 Re: Cacti XSS fixes in 0.8.7g http://marc.info/?l=oss-security&m=128017203704299&w=2 http://cacti.net/release_notes_0_8_7g.php http://svn.cacti.net/viewvc/cacti/branches/0.8.7/include/top_graph_header.php?r1=6025&r2=6024 http://svn.cacti.net/viewvc?view=rev&revision=6025 https://bugzilla.redhat.com/show_bug.cgi?id=541279 Common Vulnerability Exposure (CVE) ID: CVE-2010-2544 42575 http://www.securityfocus.com/bid/42575 cacti-utilities-xss(61226) https://exchange.xforce.ibmcloud.com/vulnerabilities/61226 http://svn.cacti.net/viewvc/cacti/branches/0.8.7/utilities.php?r1=6025&r2=6024&pathrev=6025 https://bugzilla.redhat.com/show_bug.cgi?id=459105 Common Vulnerability Exposure (CVE) ID: CVE-2010-2545 cacti-templatesimport-xss(61227) https://exchange.xforce.ibmcloud.com/vulnerabilities/61227 http://svn.cacti.net/viewvc?view=rev&revision=6037 http://svn.cacti.net/viewvc?view=rev&revision=6038 http://svn.cacti.net/viewvc?view=rev&revision=6041 http://svn.cacti.net/viewvc?view=rev&revision=6042 https://bugzilla.redhat.com/show_bug.cgi?id=459229
Copyright	Copyright (c) 2010 E-Soft Inc. http://www.securityspace.com

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.