Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2007-6210

zabbix_agentd 1.1.4 in ZABBIX before 1.4.3 runs "UserParameter" scripts with gid 0, which might allow local users to gain privileges.

Published

2007-12-04T01:46:00.000

Last Modified

2025-04-09T00:30:58.490

Status

Deferred

Source

[email protected]

Severity

CVSSv2: 2.1 (LOW)

CVSSv2 Vector

AV:L/AC:L/Au:N/C:P/I:N/A:N

Access Vector: LOCAL
Access Complexity: LOW
Authentication: NONE
Confidentiality Impact: PARTIAL
Integrity Impact: NONE
Availability Impact: NONE

Exploitability Score

3.9

Impact Score

2.9

Weaknesses

Type: Primary
CWE-16
NVD-CWE-noinfo

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	zabbix	zabbix_agentd	1.1.4	Yes

References

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=452682 Patch ([email protected])
http://secunia.com/advisories/27903 ([email protected])
http://secunia.com/advisories/27948 ([email protected])
http://secunia.com/advisories/27978 ([email protected])
http://www.debian.org/security/2007/dsa-1420 ([email protected])
http://www.securityfocus.com/bid/26680 ([email protected])
http://www.zabbix.com/forum/showthread.php?t=8400 ([email protected])
https://www.redhat.com/archives/fedora-package-announce/2007-December/msg00196.html ([email protected])
https://www.redhat.com/archives/fedora-package-announce/2007-December/msg00232.html ([email protected])
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=452682 Patch (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/27903 (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/27948 (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/27978 (af854a3a-2127-422b-91ae-364da2661108)
http://www.debian.org/security/2007/dsa-1420 (af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/26680 (af854a3a-2127-422b-91ae-364da2661108)
http://www.zabbix.com/forum/showthread.php?t=8400 (af854a3a-2127-422b-91ae-364da2661108)
https://www.redhat.com/archives/fedora-package-announce/2007-December/msg00196.html (af854a3a-2127-422b-91ae-364da2661108)
https://www.redhat.com/archives/fedora-package-announce/2007-December/msg00232.html (af854a3a-2127-422b-91ae-364da2661108)