Main Vulnerability Database Exploits ID:565 - Exploit for Symlink attack in Nagios - CVE-2016-9566

ID:565 - Exploit for Symlink attack in Nagios - CVE-2016-9566

Published: March 18, 2020

Vulnerability identifier: #VU1344

Vulnerability risk: Low

CVE-ID: CVE-2016-9566

CWE-ID: CWE-61

Exploitation vector: Local access

Vulnerable software:
Nagios

Link to public exploit:

https://www.exploit-db.com/exploits/40921/

Vulnerability description

The vulnerability allows a local user obtain elevated privileges on vulnerable system.

The vulnerability exists due to the application handles log files in unsafe manner. A local user with access to Nagios application (nagios account or member of nagios group) can cerate a specially crafted symlink to nagios log file and execute arbitrary command on vulnerable system with root privileges.

Successful exploitation of this vulnerability may allow a local user to obtain full access to vulnerable system.

Remediation

Install the latest version 4.2.4, which fixes the vulnerability.

ID:565 - Exploit for Symlink attack in Nagios - CVE-2016-9566

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human