HomeContentNewsThis severe bug in Nagios Core allows root privilege escalation

This severe bug in Nagios Core allows root privilege escalation

- Advertisement -

security

A new critical bug that can gain root privilege of your system through Nagios Core has emerged online. The bug has affected the open source software by allowing a backdoor root privilege escalation to attackers.

Security researcher Dawid Golunski has identified the latest vulnerability within Nagios Core that is a popular open source software used to monitor network and infrastructure. The critical bug, coined as CVE-2016-9566, is dependent on the CVE-2016-9565 vulnerability that was identified and fixed in version 4.2.4.

- Advertisement -

“This vulnerability could be used by an attacker to escalate their privileges from Nagios user/group to root for example by creating a malicious /etc/ld.so.preload file,” Golunski writes in a blog post.

The attackers rely on initiating the hack with CVE-2016-9566 to gain root privilege escalation. Thereafter, by leveraging CVE-2016-9565, they can take the full control of the system. The bug has apparently affected all the major versions previous the newly 4.2.4 release.

Users are recommended to install Nagios 4.2.4 on their systems to prevent any hacking issues.

- Advertisement -
Rajat Kabade
Rajat Kabade
Rajat is into blogging since he was in the high-school. He’s an Android geek, known for his work on Android ROMs & Kernels on XDA developers forum. He manages Google Developer Group Pune community.

LEAVE A REPLY

Please enter your comment!
Please enter your name here

Thought Leaders

Open Journey

- Advertisement -

MOST POPULAR