Nagios XI Installer Local Privilege Escalation Vulnerability

Bugtraq ID:	51072
Class:	Design Error
CVE:
Remote:	No
Local:	Yes
Published:	Dec 14 2011 12:00AM
Updated:	Dec 14 2011 12:00AM
Credit:	0a29406d9794e4f9b30b3c5d6702c708
Vulnerable:
Not Vulnerable:

Nagios XI Installer Local Privilege Escalation Vulnerability

Nagios XI is prone to a local privilege-escalation vulnerability.

Local attackers may exploit this issue to gain elevated privileges, which can lead to a complete compromise of an affected computer.

Nagios XI versions prior to 2011R1.9 are vulnerable.

Nagios XI Installer Local Privilege Escalation Vulnerability

Attackers can exploit this issue with local, interactive access to an affected computer.

Nagios XI Installer Local Privilege Escalation Vulnerability

Solution:
Updates are available; please see the references for more information.

Nagios XI Installer Local Privilege Escalation Vulnerability

References:

• Nagios Homepage (Nagios)
  
• Privilege escalation vulnerabilities in Nagios XI installer < 2011R1.9 (Full Disclosure)