Signature Detail
Short Name |
HTTP:PHP:CACTI-RDD-LOCAL-SCRIPT |
|---|---|
Severity |
Medium |
Recommended |
No |
Category |
HTTP |
Keywords |
Cacti RDD Local Scripts |
Release Date |
2007/03/07 |
Update Number |
1213 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+ |
HTTP: Cacti RDD Local Scripts
This signature detects attempts to exploit a known vulnerability against Cacti RDD. A successful attack can lead to arbitrary code execution.
Extended Description
Cacti is prone to a remote command-execution vulnerability because the application fails to properly sanitize user-supplied input to the 'cmd.php' script. Exploiting this issue allows attackers to execute arbitrary commands in the context of the server. A successful exploit could facilitate the compromise of an affected computer; other attacks are also possible. Cacti 0.8.6i and prior versions are reportedly affected.
Affected Products
- Cacti 0.8.6 F
- Cacti 0.8.6 H
- Cacti 0.8.6I
- Debian Linux 3.1.0
- Debian Linux 3.1.0 Alpha
- Debian Linux 3.1.0 Amd64
- Debian Linux 3.1.0 Arm
- Debian Linux 3.1.0 Hppa
- Debian Linux 3.1.0 Ia-32
- Debian Linux 3.1.0 Ia-64
- Debian Linux 3.1.0 M68k
- Debian Linux 3.1.0 Mips
- Debian Linux 3.1.0 Mipsel
- Debian Linux 3.1.0 Ppc
- Debian Linux 3.1.0 S/390
- Debian Linux 3.1.0 Sparc
- Gentoo Linux
- Mandriva Corporate Server 4.0
- Mandriva Corporate Server 4.0.0 X86 64
- OpenPKG 2-Stable-20061018
- OpenPKG Current
- OpenPKG E1.0-Solid
- OpenPKG Stable
- SuSE Linux Personal 10.0.0 OSS
- SuSE Linux Personal 10.1
- SuSE Linux Personal 9.3.0
- SuSE Linux Personal 9.3.0 X86 64
- SuSE Linux Professional 10.0.0
- SuSE Linux Professional 10.0.0 OSS
- SuSE Linux Professional 9.3.0
- SuSE Linux Professional 9.3.0 X86 64
- SuSE openSUSE 10.2
References
- BugTraq: 21799
- CVE: CVE-2006-6799
- URL: http://www.milw0rm.com/exploits/3029
- URL: http://www.cacti.net/release_notes_0_8_6j.php