CVE-2009-4502

The NET_TCP_LISTEN function in net.c in Zabbix Agent before 1.6.7, when running on FreeBSD or Solaris, allows remote attackers to bypass the EnableRemoteCommands setting and execute arbitrary commands via shell metacharacters in the argument to net.tcp.listen.  NOTE: this attack is limited to attacks from trusted IP addresses.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
9.3 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:N/C:C/I:C/A:C
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 98%
VendorProductVersion
zabbixzabbix
𝑥
≤ 1.6.6
zabbixzabbix
1.1.2
zabbixzabbix
1.1.3
zabbixzabbix
1.1.4
zabbixzabbix
1.1.5
zabbixzabbix
1.4.2
zabbixzabbix
1.4.3
zabbixzabbix
1.4.4
zabbixzabbix
1.4.6
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
zabbix
bullseye
1:5.0.8+dfsg-1
fixed
bullseye (security)
1:5.0.44+dfsg-1+deb11u1
fixed
bookworm
1:6.0.14+dfsg-1
fixed
trixie
1:7.0.3+dfsg-1
fixed
sid
1:7.0.5+dfsg-1
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
zabbix
oneiric
not-affected
natty
not-affected
maverick
not-affected
lucid
not-affected
karmic
ignored
jaunty
ignored
intrepid
ignored
hardy
ignored
dapper
dne
Common Weakness Enumeration
References
http://secunia.com/advisories/37740
http://www.securityfocus.com/archive/1/508439
http://www.vupen.com/english/advisories/2009/3514
https://support.zabbix.com/browse/ZBX-1032
http://secunia.com/advisories/37740
http://www.securityfocus.com/archive/1/508439
http://www.vupen.com/english/advisories/2009/3514
https://support.zabbix.com/browse/ZBX-1032