Raxnet Cacti World Readable Config.php File Vulnerability

Raxnet Cacti is a frontend for rrdtool, a round robin database for monitoring network activity. It stores information to create graphs and populate them with information from a MySQL database.

The config.php file created by Cacti is world readable by default. This file contains the MySQL database user credentials.


 

Privacy Statement
Copyright 2010, SecurityFocus