Bug 1306529 (CVE-2016-2313) - CVE-2016-2313 cacti: authentication bypass
Summary: CVE-2016-2313 cacti: authentication bypass
Keywords:
Status: CLOSED ERRATA
Alias: CVE-2016-2313
Product: Security Response
Classification: Other
Component: vulnerability
Version: unspecified
Hardware: All
OS: Linux
medium
medium
Target Milestone: ---
Assignee: Red Hat Product Security
QA Contact:
URL:
Whiteboard:
Depends On: 1306530
Blocks:
TreeView+ depends on / blocked
 
Reported: 2016-02-11 08:03 UTC by Andrej Nemec
Modified: 2019-09-29 13:44 UTC (History)
1 user (show)

Fixed In Version: cacti 0.8.8g
Doc Type: Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed: 2017-01-30 11:59:55 UTC


Attachments (Terms of Use)

Description Andrej Nemec 2016-02-11 08:03:29 UTC
Accessing cacti using a user name not the cacti database fills the log with
database error messages and allows complete access to everything, including the
user administration pages. The bug is in auth_login.php which fails to check
the query actually found any data or not.

Upstream bug report:

http://bugs.cacti.net/view.php?id=2656

Upstream fix:

http://svn.cacti.net/viewvc?view=rev&revision=7770

Comment 1 Andrej Nemec 2016-02-11 08:03:49 UTC
Created cacti tracking bugs for this issue:

Affects: epel-all [bug 1306530]

Comment 2 Andrej Nemec 2016-02-11 08:20:14 UTC
CVE assignment:

http://seclists.org/oss-sec/2016/q1/305


Note You need to log in before you can comment on or make changes to this bug.