CVE-2016-8641
published 2018-08-01CVE-2016-8641: A privilege escalation vulnerability was found in nagios 4.2.x that occurs in daemon-init.in when creating necessary files and insecurely changing the…
PriorityP342high7.8CVSS 3.0
AVLACLPRLUINSUCHIHAH
EXPLOIT
EPSS
1.15%
62.9th percentile
A privilege escalation vulnerability was found in nagios 4.2.x that occurs in daemon-init.in when creating necessary files and insecurely changing the ownership afterwards. It's possible for the local attacker to create symbolic links before the files are to be created and possibly escalating the privileges with the ownership change.
Affected
6 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| nagios | nagios | <= 4.2.4 | — |
| nagios | nagios | — | — |
| nagios | nagios | — | — |
| nagios | nagios | — | — |
| nagios | nagios | — | — |
| nagios_enterprises | nagios | — | — |
CVSS provenance
nvdv3.07.8HIGHCVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
nvdv2.07.2HIGHAV:L/AC:L/Au:N/C:C/I:C/A:C
vendor_redhat7.8HIGH
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-q77f-5m65-8q6j: Nagios 4
ghsa_unreviewed·2022-05-17·CVSS 6.7
CVE-2016-10089 [MEDIUM] GHSA-q77f-5m65-8q6j: Nagios 4
Nagios 4.3.2 and earlier allows local users to gain root privileges via a hard link attack on the Nagios init script file, related to CVE-2016-8641.
GHSA
GHSA-xh33-x4fq-3r2h: A privilege escalation vulnerability was found in nagios 4
ghsa_unreviewed·2022-05-13
CVE-2016-8641 [HIGH] CWE-59 GHSA-xh33-x4fq-3r2h: A privilege escalation vulnerability was found in nagios 4
A privilege escalation vulnerability was found in nagios 4.2.x that occurs in daemon-init.in when creating necessary files and insecurely changing the ownership afterwards. It's possible for the local attacker to create symbolic links before the files are to be created and possibly escalating the privileges with the ownership change.
Red Hat
nagios: Privilege escalation due to incomplete fix for CVE-2016-8641
vendor_redhat·2016-12-30·CVSS 7.8
CVE-2016-10089 [HIGH] CWE-59 nagios: Privilege escalation due to incomplete fix for CVE-2016-8641
nagios: Privilege escalation due to incomplete fix for CVE-2016-8641
Nagios 4.3.2 and earlier allows local users to gain root privileges via a hard link attack on the Nagios init script file, related to CVE-2016-8641.
A vulnerability was found in Nagios 4.2.4, and earlier, which allows local users to gain root privileges via a hard link attack on the Nagios init script file, related to CVE-2016-8641.
Statement: Red Hat Product Security has rated this issue as having Low security impact. This issue is not currently planned to be addressed in future updates. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.
Mitigation: This flaw, and others like it, are mitigated by enabling hardlink and symlink protections
Red Hat
nagios: Unsafe ownership change leading to privilege escalation
vendor_redhat·2016-11-22·CVSS 6.7
CVE-2016-8641 [MEDIUM] CWE-59 nagios: Unsafe ownership change leading to privilege escalation
nagios: Unsafe ownership change leading to privilege escalation
A privilege escalation vulnerability was found in nagios 4.2.x that occurs in daemon-init.in when creating necessary files and insecurely changing the ownership afterwards. It's possible for the local attacker to create symbolic links before the files are to be created and possibly escalating the privileges with the ownership change.
Statement: Red Hat OpenStack Platform versions 5, 6 and 7 are now in Phase 2 of the support and maintenance life cycle. This issue is not currently planned to be addressed in future updates. For additional information, refer to the Red Hat OpenStack Platform Life Cycle: https://access.redhat.com/support/policy/updates/openstack/platform/
Package: nagios (Red Hat Enterprise Linux OpenStack Platf
No detection rules found.
Bugzilla
CVE-2016-10089 nagios: Privilege escalation due to incomplete fix for CVE-2016-8641 [fedora-all]
bugzilla·2017-11-08·CVSS 7.8
CVE-2016-10089 [HIGH] CVE-2016-10089 nagios: Privilege escalation due to incomplete fix for CVE-2016-8641 [fedora-all]
CVE-2016-10089 nagios: Privilege escalation due to incomplete fix for CVE-2016-8641 [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of fedora-all.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When submitting as an update, use the fedpkg template provided in the next
comment(s). This will include the bug IDs of this tracking bug as well as
the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
fedpkg commit message.
NOTE: this issue affects multiple
Bugzilla
CVE-2016-10089 nagios: Privilege escalation due to incomplete fix for CVE-2016-8641 [epel-all]
bugzilla·2017-11-08·CVSS 7.8
CVE-2016-10089 [HIGH] CVE-2016-10089 nagios: Privilege escalation due to incomplete fix for CVE-2016-8641 [epel-all]
CVE-2016-10089 nagios: Privilege escalation due to incomplete fix for CVE-2016-8641 [epel-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of epel-all.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When submitting as an update, use the fedpkg template provided in the next
comment(s). This will include the bug IDs of this tracking bug as well as
the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
fedpkg commit message.
NOTE: this issue affects multiple sup
Bugzilla
CVE-2016-10089 nagios: Privilege escalation due to incomplete fix for CVE-2016-8641
bugzilla·2017-11-08·CVSS 7.8
CVE-2016-10089 [HIGH] CVE-2016-10089 nagios: Privilege escalation due to incomplete fix for CVE-2016-8641
CVE-2016-10089 nagios: Privilege escalation due to incomplete fix for CVE-2016-8641
Nagios 4.2.4 and earlier allows local users to gain root privileges via a hard link attack on the Nagios init script file, related to CVE-2016-8641.
External References:
http://www.openwall.com/lists/oss-security/2016/12/30/5
Discussion:
Created nagios tracking bugs for this issue:
Affects: epel-all [bug 1510929]
Affects: fedora-all [bug 1510928]
---
Statement:
Red Hat Product Security has rated this issue as having Low security impact. This issue is not currently planned to be addressed in future updates. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.
---
Mitigation:
This flaw, and others like it, are mitigated
Bugzilla
CVE-2016-8641 nagios: Unsafe ownership change leading to privilege escalation
bugzilla·2016-11-11·CVSS 6.7
CVE-2016-8641 [MEDIUM] CVE-2016-8641 nagios: Unsafe ownership change leading to privilege escalation
CVE-2016-8641 nagios: Unsafe ownership change leading to privilege escalation
A privilege escalation vulnerability was found in nagios that occurs in daemon-init.in when creating necessary files and insecurely changing the ownership afterwards. It's possible for the local attacker to create symbolic links before the files are to be created and possibly escalating the privileges with the ownership change.
Upstream patch:
https://github.com/NagiosEnterprises/nagioscore/commit/f2ed227673d3b2da643eb5cad26b2d87674f28c1.patch
Discussion:
Acknowledgments:
Name: Vincent Malguy
---
Statement:
Red Hat OpenStack Platform versions 5, 6 and 7 are now in Phase 2 of the support and maintenance life cycle. This issue is not currently planned to be addressed in future updates. For additional infor
http://www.securityfocus.com/bid/95121https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8641https://github.com/NagiosEnterprises/nagioscore/commit/f2ed227673d3b2da643eb5cad26b2d87674f28c1.patchhttps://security.gentoo.org/glsa/201702-26https://www.exploit-db.com/exploits/40774/http://www.securityfocus.com/bid/95121https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8641https://github.com/NagiosEnterprises/nagioscore/commit/f2ed227673d3b2da643eb5cad26b2d87674f28c1.patchhttps://security.gentoo.org/glsa/201702-26https://www.exploit-db.com/exploits/40774/
2018-08-01
Published