CVE-2013-4215
Published: 5 May 2014
The IPXPING_COMMAND in contrib/check_ipxping.c in Nagios Plugins 1.4.16 allows local users to gain privileges via a symlink attack on /tmp/ipxping/ipxping.
Notes
Author | Note |
---|---|
mdeslaur | we don't ship the check_ipxping script from the contrib/ directory in binary packages |
Priority
Status
Package | Release | Status |
---|---|---|
nagios-plugins Launchpad, Ubuntu, Debian |
lucid |
Ignored
(end of life)
|
precise |
Not vulnerable
(code not shipped)
|
|
quantal |
Not vulnerable
(code not shipped)
|
|
raring |
Not vulnerable
(code not shipped)
|
|
upstream |
Needs triage
|