Summary
This host is installed with Zabbix Server and is prone to arbitrary command execution vulnerability.
Impact
Successful exploitation will allow attackers to execute arbitrary commands via specially crafted data.
Impact level: Application
Solution
Update to version 1.8 or above,
http://www.zabbix.com/download.php
Insight
This issue is due to an error in the 'node_process_command()' function, which can be exploited to execute arbitrary commands via specially crafted data.
Affected
Zabbix Server versions prior to 1.8
References
Severity
Classification
-
CVE CVE-2009-4498 -
CVSS Base Score: 6.8
AV:N/AC:M/Au:N/C:P/I:P/A:P
Related Vulnerabilities