2 matches found
CVE-2009-4502
The NETTCPLISTEN function in net.c in Zabbix Agent before 1.6.7, when running on FreeBSD or Solaris, allows remote attackers to bypass the EnableRemoteCommands setting and execute arbitrary commands via shell metacharacters in the argument to net.tcp.listen. NOTE: this attack is limited to attack...
CVE-2009-4502
The CVE affects Zabbix Agent prior to 1.6.7 running on FreeBSD or Solaris, where the NET_TCP_LISTEN function in net.c enables remote attackers to bypass EnableRemoteCommands and run arbitrary shell commands via metacharacters in the net.tcp.listen argument. The vulnerability is limited to trusted...