Lucene search
MitreCVE-2011-3263HistoryAug 19, 2011 - 9:55 p.m.
CVE-2011-3263
2011-08-1921:55:02
CWE-399
mitre
web.nvd.nist.gov
35
security
vulnerability
cve-2011-3263
zabbix
denial of service
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
AI Score
6.4
Confidence
Low
EPSS
0.003
Percentile
65.1%
zabbix_agentd in Zabbix before 1.8.6 and 1.9.x before 1.9.4 allows context-dependent attackers to cause a denial of service (CPU consumption) by executing the vfs.file.cksum command for a special device, as demonstrated by the /dev/urandom device.
Affected configurations
Node
zabbixzabbixRange≤1.8.5
ORzabbixzabbixMatch1.1
ORzabbixzabbixMatch1.1beta10
ORzabbixzabbixMatch1.1beta11
ORzabbixzabbixMatch1.1beta12
ORzabbixzabbixMatch1.1beta2
ORzabbixzabbixMatch1.1beta3
ORzabbixzabbixMatch1.1beta4
ORzabbixzabbixMatch1.1beta5
ORzabbixzabbixMatch1.1beta6
ORzabbixzabbixMatch1.1beta7
ORzabbixzabbixMatch1.1beta8
ORzabbixzabbixMatch1.1beta9
ORzabbixzabbixMatch1.1.1
ORzabbixzabbixMatch1.1.2
ORzabbixzabbixMatch1.1.3
ORzabbixzabbixMatch1.1.4
ORzabbixzabbixMatch1.1.5
ORzabbixzabbixMatch1.1.6
ORzabbixzabbixMatch1.1.7
ORzabbixzabbixMatch1.3beta
ORzabbixzabbixMatch1.3.1beta
ORzabbixzabbixMatch1.3.2beta
ORzabbixzabbixMatch1.3.3beta
ORzabbixzabbixMatch1.3.4beta
ORzabbixzabbixMatch1.3.5beta
ORzabbixzabbixMatch1.3.6beta
ORzabbixzabbixMatch1.3.7beta
ORzabbixzabbixMatch1.3.8beta
ORzabbixzabbixMatch1.4.2
ORzabbixzabbixMatch1.4.3
ORzabbixzabbixMatch1.4.4
ORzabbixzabbixMatch1.4.5
ORzabbixzabbixMatch1.4.6
ORzabbixzabbixMatch1.5beta
ORzabbixzabbixMatch1.5.1beta
ORzabbixzabbixMatch1.5.2beta
ORzabbixzabbixMatch1.5.3beta
ORzabbixzabbixMatch1.5.4beta
ORzabbixzabbixMatch1.6
ORzabbixzabbixMatch1.6.1
ORzabbixzabbixMatch1.6.2
ORzabbixzabbixMatch1.6.3
ORzabbixzabbixMatch1.6.4
ORzabbixzabbixMatch1.6.5
ORzabbixzabbixMatch1.6.6
ORzabbixzabbixMatch1.6.7
ORzabbixzabbixMatch1.6.8
ORzabbixzabbixMatch1.6.9
ORzabbixzabbixMatch1.7
ORzabbixzabbixMatch1.7.1
ORzabbixzabbixMatch1.7.2
ORzabbixzabbixMatch1.7.3
ORzabbixzabbixMatch1.7.4
ORzabbixzabbixMatch1.8
ORzabbixzabbixMatch1.8.1
ORzabbixzabbixMatch1.8.2
ORzabbixzabbixMatch1.8.3
ORzabbixzabbixMatch1.8.3rc1
ORzabbixzabbixMatch1.8.3rc2
ORzabbixzabbixMatch1.8.3rc3
ORzabbixzabbixMatch1.8.4
ORzabbixzabbixMatch1.8.4rc1
ORzabbixzabbixMatch1.8.4rc2
ORzabbixzabbixMatch1.8.4rc3
ORzabbixzabbixMatch1.8.4rc4
ORzabbixzabbixMatch1.8.5rc1
Node
zabbixzabbixMatch1.9.0alpha
ORzabbixzabbixMatch1.9.1alpha
ORzabbixzabbixMatch1.9.2alpha
ORzabbixzabbixMatch1.9.3alpha
| Vendor | Product | Version | CPE |
|---|---|---|---|
| zabbix | zabbix | 1.8.2 | cpe:/a:zabbix:zabbix:1.8.2::: |
| zabbix | zabbix | 1.3.3 | cpe:/a:zabbix:zabbix:1.3.3:beta:: |
| zabbix | zabbix | 1.3.6 | cpe:/a:zabbix:zabbix:1.3.6:beta:: |
| zabbix | zabbix | 1.3 | cpe:/a:zabbix:zabbix:1.3:beta:: |
| zabbix | zabbix | 1.8.3 | cpe:/a:zabbix:zabbix:1.8.3:rc3:: |
| zabbix | zabbix | 1.1.7 | cpe:/a:zabbix:zabbix:1.1.7::: |
| zabbix | zabbix | 1.5.1 | cpe:/a:zabbix:zabbix:1.5.1:beta:: |
| zabbix | zabbix | 1.3.2 | cpe:/a:zabbix:zabbix:1.3.2:beta:: |
| zabbix | zabbix | 1.8.5 | cpe:/a:zabbix:zabbix:1.8.5:rc1:: |
| zabbix | zabbix | 1.5.3 | cpe:/a:zabbix:zabbix:1.5.3:beta:: |
Related
debiancve
debiancve
CVE-2011-3263
2011-08-19 21:55:02
cvelist
cvelist
CVE-2011-3263
2011-08-19 21:00:00
prion
prion
Command injection
2011-08-19 21:55:00
nvd
nvd
CVE-2011-3263
2011-08-19 21:55:02
nessus
nessus
Zabbix 1.9.x < 1.9.4 zabbix_agentd DoS
2013-12-19 00:00:00
Fedora 16 : zabbix-1.8.6-1.fc16 (2011-10583)
2011-08-23 00:00:00
Zabbix < 1.8.6 Multiple Vulnerabilities
2011-09-07 00:00:00
ubuntucve
ubuntucve
CVE-2011-3263
2011-08-19 00:00:00
openvas
openvas
Fedora Update for zabbix FEDORA-2011-10583
2012-04-02 00:00:00
Fedora Update for zabbix FEDORA-2011-10583
2012-04-02 00:00:00
Gentoo Security Advisory GLSA 201311-15
2015-09-29 00:00:00
fedora
fedora
[SECURITY] Fedora 16 Update: zabbix-1.8.6-1.fc16
2011-08-22 15:10:35
gentoo
gentoo
Zabbix: Multiple vulnerabilities
2013-11-25 00:00:00
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
AI Score
6.4
Confidence
Low
EPSS
0.003
Percentile
65.1%
Related for CVE-2011-3263