ZABBIX Denial Of Service and SQL Injection Vulnerabilities

Summary
ZABBIX is prone to a denial-of-service vulnerability and an SQL- injection vulnerability. Successful exploits may allow remote attackers to crash the affected application, exploit latent vulnerabilities in the underlying database, access or modify data, or compromise the application. Versions prior to ZABBIX 1.6.8 are vulnerable.
Solution
Updates are available. Please see the references for details.
References