1
Candidate: CVE-2009-4502
4
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4502
6
The NET_TCP_LISTEN function in net.c in Zabbix Agent before 1.6.7, when
7
running on FreeBSD or Solaris, allows remote attackers to bypass the
8
EnableRemoteCommands setting and execute arbitrary commands via shell
9
metacharacters in the argument to net.tcp.listen. NOTE: this attack is
10
limited to attacks from trusted IP addresses.
19
upstream_zabbix: released (1.6.7)
21
hardy_zabbix: ignored (reached end-of-life)
22
intrepid_zabbix: needed (reached end-of-life)
23
jaunty_zabbix: ignored (reached end-of-life)
24
karmic_zabbix: ignored (reached end-of-life)
25
lucid_zabbix: not-affected (1:1.8-1)
26
maverick_zabbix: not-affected (1:1.8-1)
27
natty_zabbix: not-affected (1:1.8-1)
28
oneiric_zabbix: not-affected (1:1.8-1)
29
devel_zabbix: not-affected (1:1.8-1)