This script is Copyright (C) 2014 Tenable Network Security, Inc.
The monitoring service running on the remote host may be affected by
an arbitrary command execution vulnerability.
The remote host is running a version of Nagios NRPE that has command
argument processing enabled. This could allow remote attackers to
append arbitrary arguments to any configured command scripts.
An unauthenticated, remote attacker could exploit this issue to
execute arbitrary commands within the context of the vulnerable
See also :
Disable command argument processing in the NRPE configuration.
Risk factor :
High / CVSS Base Score : 7.5
CVSS Temporal Score : 6.8
Public Exploit Available : true
Nessus Plugin ID: 73757 ()
Bugtraq ID: 66969
CVE ID: CVE-2014-2913
The cookie settings on this website are set to 'allow all cookies' to give you the very best website experience. If you continue without changing these settings, you consent to this - but if you want, you can opt out of all cookies by clicking below.