Critical severity9.8NVD Advisory· Published Dec 15, 2016· Updated Jun 17, 2026
CVE-2016-9565
CVE-2016-9565
Description
MagpieRSS, as used in the front-end component in Nagios Core before 4.2.2 might allow remote attackers to read or write to arbitrary files by spoofing a crafted response from the Nagios RSS feed server. NOTE: this vulnerability exists because of an incomplete fix for CVE-2008-4796.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: <4.2.2
Patches
Vulnerability mechanics
References
16- packetstormsecurity.com/files/140169/Nagios-Core-Curl-Command-Injection-Code-Execution.htmlnvdExploitThird Party AdvisoryVDB Entry
- legalhackers.com/advisories/Nagios-Exploit-Command-Injection-CVE-2016-9565-2008-4796.htmlnvdExploitThird Party Advisory
- seclists.org/fulldisclosure/2016/Dec/57nvdMailing ListThird Party Advisory
- www.securityfocus.com/bid/94922nvdThird Party AdvisoryVDB Entry
- www.nagios.org/projects/nagios-core/history/4x/nvdVendor Advisory
- rhn.redhat.com/errata/RHSA-2017-0211.htmlnvd
- rhn.redhat.com/errata/RHSA-2017-0212.htmlnvd
- rhn.redhat.com/errata/RHSA-2017-0213.htmlnvd
- rhn.redhat.com/errata/RHSA-2017-0214.htmlnvd
- rhn.redhat.com/errata/RHSA-2017-0258.htmlnvd
- rhn.redhat.com/errata/RHSA-2017-0259.htmlnvd
- www.securityfocus.com/archive/1/539925/100/0/threadednvd
- www.securitytracker.com/id/1037488nvd
- security.gentoo.org/glsa/201702-26nvd
- security.gentoo.org/glsa/201710-20nvd
- www.exploit-db.com/exploits/40920/nvd
News mentions
0No linked articles in our index yet.