CVE 2008-0784
graph.php in Cacti 0.8.7 before 0.8.7b and 0.8.6 before 0.8.6k allows remote attackers to obtain the full path via an invalid local_graph_id parameter and other unspecified vectors.
Related bugs and status
CVE-2008-0784 (Candidate) is related to these bugs:
Bug #185858: Cacti (Hardy) Does Not Have cli tools
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 185858 | Cacti (Hardy) Does Not Have cli tools | cacti (Ubuntu) | Undecided | Fix Released | ||
| 185858 | Cacti (Hardy) Does Not Have cli tools | cacti (Debian) | Unknown | Fix Released | ||
Bug #192199: [SECURITY] CVE-2008-0783 and CVE-2008-0784
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 192199 | [SECURITY] CVE-2008-0783 and CVE-2008-0784 | cacti (Ubuntu) | Undecided | Fix Released | ||
| 192199 | [SECURITY] CVE-2008-0783 and CVE-2008-0784 | cacti (Ubuntu Gutsy) | Medium | Fix Released | ||
| 192199 | [SECURITY] CVE-2008-0783 and CVE-2008-0784 | cacti (Ubuntu Feisty) | Medium | Fix Released | ||
| 192199 | [SECURITY] CVE-2008-0783 and CVE-2008-0784 | cacti (Ubuntu Dapper) | Medium | Fix Released | ||
| 192199 | [SECURITY] CVE-2008-0783 and CVE-2008-0784 | cacti (Ubuntu Edgy) | Medium | Fix Released | ||
Bug #192201: Graph Logic Syntax Issue
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 192201 | Graph Logic Syntax Issue | cacti (Ubuntu) | Undecided | Fix Released | ||
Bug #192203: Hosts with Duplicate IP Address Not Polled
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 192203 | Hosts with Duplicate IP Address Not Polled | cacti (Ubuntu) | Undecided | Fix Released | ||
Bug #194687: cacti web frontend fails with 'Invalid PHP_SELF Path' after upgrade
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 194687 | cacti web frontend fails with 'Invalid PHP_SELF Path' after upgrade | cacti (Ubuntu) | Medium | Fix Released | ||
| 194687 | cacti web frontend fails with 'Invalid PHP_SELF Path' after upgrade | cacti (Ubuntu Gutsy) | High | Fix Released | ||
| 194687 | cacti web frontend fails with 'Invalid PHP_SELF Path' after upgrade | cacti (Ubuntu Dapper) | High | Fix Released | ||
| 194687 | cacti web frontend fails with 'Invalid PHP_SELF Path' after upgrade | cacti (Ubuntu Edgy) | High | Fix Released | ||
| 194687 | cacti web frontend fails with 'Invalid PHP_SELF Path' after upgrade | cacti (Ubuntu Feisty) | High | Fix Released | ||
| 194687 | cacti web frontend fails with 'Invalid PHP_SELF Path' after upgrade | cacti (Ubuntu Hardy) | Medium | Fix Released | ||
See the 
CVE page on Mitre.org
for more details.
