CVE-2016-10089

Description

Nagios 4.3.2 and earlier allows local users to gain root privileges via a hard link attack on the Nagios init script file, related to CVE-2016-8641.

References

http://www.securityfocus.com/bid/95171 (95171) vdb-entry

http://www.openwall.com/lists/oss-security/2016/12/30/6 ([oss-security] 20161230 Re: CVE request: Nagios: Incomplete fix for CVE-2016-8641) mailing-list

cve.org CVE-2016-10089

nvd.nist.gov CVE-2016-10089

Download JSON