Vulnerabilities > CVE-2014-8994 - Source Code vulnerability in Check Diskio Project Check Diskio 3.2.5
Attack vector
LOCAL Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
PARTIAL Availability impact
PARTIAL Summary
The check_diskio plugin 3.2.6 and earlier for Nagios and Icinga allows local users to write to arbitrary files via a symlink attack on a temporary file with a predictable name (tmp/check_diskio_status-*-*).
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |