Candidate: CVE-2009-4501
PublicDate: 2009-12-31 18:30:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4501
Description:
 The zbx_get_next_field function in libs/zbxcommon/str.c in Zabbix Server
 before 1.6.8 allows remote attackers to cause a denial of service (crash)
 via a request that lacks expected separators, which triggers a NULL pointer
 dereference, as demonstrated using the Command keyword.
Ubuntu-Description:
Notes:
Bugs:
Priority: low
Discovered-by:
Assigned-to:
CVSS: 

Patches_zabbix:
upstream_zabbix: released (1.6.8)
dapper_zabbix: DNE
hardy_zabbix: ignored (reached end-of-life)
intrepid_zabbix: needed (reached end-of-life)
jaunty_zabbix: ignored (reached end-of-life)
karmic_zabbix: ignored (reached end-of-life)
lucid_zabbix: not-affected (1:1.8-1)
maverick_zabbix: not-affected (1:1.8-1)
natty_zabbix: not-affected (1:1.8-1)
oneiric_zabbix: not-affected (1:1.8-1)
devel_zabbix: not-affected (1:1.8-1)