CVE-2009-4112

N/A Unknown

Published: November 30, 2009 Modified: April 23, 2026

Description

Cacti 0.8.7e and earlier allows remote authenticated administrators to gain privileges by modifying the "Data Input Method" for the "Linux - Get Memory Usage" setting to contain arbitrary commands.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://archives.neohapsis.com/archives/fulldisclosure/2009-11/0292.html

Source: cve@mitre.org

Exploit

http://lists.opensuse.org/opensuse-security-announce/2020-03/msg00001.html

Source: cve@mitre.org

http://lists.opensuse.org/opensuse-security-announce/2020-03/msg00005.html

Source: cve@mitre.org

http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00042.html

Source: cve@mitre.org

http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00048.html

Source: cve@mitre.org

http://www.openwall.com/lists/oss-security/2009/11/26/1

Source: cve@mitre.org

http://www.openwall.com/lists/oss-security/2009/11/30/2

Source: cve@mitre.org

http://www.securityfocus.com/archive/1/508129/100/0/threaded

Source: cve@mitre.org

http://www.securityfocus.com/bid/37137

Source: cve@mitre.org

Exploit

https://exchange.xforce.ibmcloud.com/vulnerabilities/54473

Source: cve@mitre.org

http://archives.neohapsis.com/archives/fulldisclosure/2009-11/0292.html