There are other files that can be exploited under certain conditions.
This post in the cacti forum has a list of the affected files:
http://forums.cacti.net/post-87558.html#87558
They have also released patches for this, so is there any reason not to
just use the upstream patches that fix all the vulnerabilities that they
found?
http://cacti.net/download_patches.php
I apologize if this is out of line, but I too got bitten by this.
--Will
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
