 |
Name:
Cacti.Graph_image.php.DoS
|
Released Date:
Apr 15 2008
|
Severity:
low
|
CVE:
2007-3112
|
|
|
|
|
|
|
|
|
FortiGuard Center
> Vulnerability Encyclopedia
In-Depth Analysis
|
Description
|
This indicates an attempt to exploit a denial of service vulnerability in Cacti 0.8.6i.
The vulnerability allows remote authenticated users to cause a denial of service by using an overly large value for the "graph_start" or "graph_end" parameter.
|
|
|
|
Impact
|
|
Denial of Service.
|
|
|
|
Affected Products
|
Cacti, Cacti 0.8.6i,j
Mandriva, Corporate Server 4.0
Mandriva, Corporate Server 4.0/X86_64
|
|
Aliases
|
|
References
|
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=2007-3112
|
|
Recommended Actions
|
Apply the vendor's official fix:
http://svn.cacti.net/cgi-bin/viewcvs.cgi/branches/BRANCH_0_8_6/cacti/graph_image.php?rev=3956&r1=3898&r2=3956.
|
|
