Candidate: CVE-2009-4499
PublicDate: 2009-12-31 18:30:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4499
Description:
 SQL injection vulnerability in the get_history_lastid function in the
 nodewatcher component in Zabbix Server before 1.6.8 allows remote attackers
 to execute arbitrary SQL commands via a crafted request, possibly related
 to the send_history_last_id function in
 zabbix_server/trapper/nodehistory.c.
Ubuntu-Description:
Notes:
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
CVSS: 

Patches_zabbix:
upstream_zabbix: released (1.6.8)
dapper_zabbix: DNE
hardy_zabbix: ignored (reached end-of-life)
intrepid_zabbix: needed (reached end-of-life)
jaunty_zabbix: ignored (reached end-of-life)
karmic_zabbix: ignored (reached end-of-life)
lucid_zabbix: not-affected (1:1.8-1)
maverick_zabbix: not-affected (1:1.8-1)
natty_zabbix: not-affected (1:1.8-1)
oneiric_zabbix: not-affected (1:1.8-1)
devel_zabbix: not-affected (1:1.8-1)