CVE-2009-4112 (retired)

Priority
Description
Cacti 0.8.7e and earlier allows remote authenticated administrators to gain
privileges by modifying the "Data Input Method" for the "Linux - Get Memory
Usage" setting to contain arbitrary commands.
Notes
 jdstrand> per Debian, not a security issue because the admin is expected to be
  able to define such Data Input Methods.
Package
Source: cacti (LP Ubuntu Debian)
Upstream:needs-triage
More Information

Updated: 2019-03-26 11:49:40 UTC (commit ccdecfcf0fead22bd291e5f4ea745a46872dcb15)