CVE-2009-4502

EUVD-2009-4468
The NET_TCP_LISTEN function in net.c in Zabbix Agent before 1.6.7, when running on FreeBSD or Solaris, allows remote attackers to bypass the EnableRemoteCommands setting and execute arbitrary commands via shell metacharacters in the argument to net.tcp.listen.  NOTE: this attack is limited to attacks from trusted IP addresses.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
9.3 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:N/C:C/I:C/A:C
Base Score
CVSS 3.x
EPSS Score
Percentile: 98%
Affected Products (NVD)
VendorProductVersion
zabbixzabbix
𝑥
≤ 1.6.6
zabbixzabbix
1.1.2
zabbixzabbix
1.1.3
zabbixzabbix
1.1.4
zabbixzabbix
1.1.5
zabbixzabbix
1.4.2
zabbixzabbix
1.4.3
zabbixzabbix
1.4.4
zabbixzabbix
1.4.6
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
zabbix
bookworm
1:6.0.14+dfsg-1
fixed
bullseye
1:5.0.8+dfsg-1
fixed
bullseye (security)
1:5.0.44+dfsg-1+deb11u1
fixed
sid
1:7.0.5+dfsg-1
fixed
trixie
1:7.0.3+dfsg-1
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
zabbix
dapper
dne
hardy
ignored
intrepid
ignored
jaunty
ignored
karmic
ignored
lucid
not-affected
maverick
not-affected
natty
not-affected
oneiric
not-affected
Common Weakness Enumeration
References
http://secunia.com/advisories/37740
http://www.securityfocus.com/archive/1/508439
http://www.vupen.com/english/advisories/2009/3514
https://support.zabbix.com/browse/ZBX-1032
http://secunia.com/advisories/37740
http://www.securityfocus.com/archive/1/508439
http://www.vupen.com/english/advisories/2009/3514
https://support.zabbix.com/browse/ZBX-1032