This script is Copyright (C) 2013 Tenable Network Security, Inc.
The remote Amazon Linux AMI host is missing a security update.
(1) snmp.php and (2) rrd.php in Cacti before 0.8.8b allows remote
attackers to execute arbitrary commands via shell metacharacters in
unspecified vectors. (CVE-2013-1435)
Multiple SQL injection vulnerabilities in (1) api_poller.php and (2)
utility.php in Cacti before 0.8.8b allow remote attackers to execute
arbitrary SQL commands via unspecified vectors. (CVE-2013-1434)
See also :
Run 'yum update cacti' to update your system.
Risk factor :
High / CVSS Base Score : 7.5