Arbitrary File Overwrite Vulnerability in Nagios Core RSS Newsfeed

CVE-2013-4214 · MEDIUM Severity

AV:L/AC:M/AU:N/C:N/I:C/A:C

rss-newsfeed.php in Nagios Core 3.4.4, 3.5.1, and earlier, when MAGPIE_CACHE_ON is set to 1, allows local users to overwrite arbitrary files via a symlink attack on /tmp/magpie_cache.

Learn more about our Cis Benchmark Audit For Apple Ios.