CVE-2007-3113

Publication date 7 June 2007

Last updated 17 July 2025

Ubuntu priority

Description

Cacti 0.8.6i, and possibly other versions, allows remote authenticated users to cause a denial of service (CPU consumption) via a large value of the (1) graph_height or (2) graph_width parameter, different vectors than CVE-2007-3112.

Status

Show unmaintained releases

Package	Ubuntu Release	Status
cacti	9.04 jaunty	Fixed 0.8.6j-1.1
	8.10 intrepid	Fixed 0.8.6j-1.1
	8.04 LTS hardy	Fixed 0.8.6j-1.1
	7.10 gutsy	Fixed 0.8.6j-1.1
	7.04 feisty	Ignored end of life, was needed
	6.10 edgy	Ignored end of life, was needed
	6.06 LTS dapper	Fixed 0.8.6h-1ubuntu3.4

How can I get the fixes?
What do statuses mean?

References

MITRE
NVD
Launchpad
Debian

Other references

https://www.cve.org/CVERecord?id=CVE-2007-3113