Candidate: CVE-2009-4502
PublicDate: 2009-12-31 18:30:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4502
Description:
 The NET_TCP_LISTEN function in net.c in Zabbix Agent before 1.6.7, when
 running on FreeBSD or Solaris, allows remote attackers to bypass the
 EnableRemoteCommands setting and execute arbitrary commands via shell
 metacharacters in the argument to net.tcp.listen.  NOTE: this attack is
 limited to attacks from trusted IP addresses.
Ubuntu-Description:
Notes:
Bugs:
Priority: low
Discovered-by:
Assigned-to:
CVSS: 

Patches_zabbix:
upstream_zabbix: released (1.6.7)
dapper_zabbix: DNE
hardy_zabbix: ignored (reached end-of-life)
intrepid_zabbix: needed (reached end-of-life)
jaunty_zabbix: ignored (reached end-of-life)
karmic_zabbix: ignored (reached end-of-life)
lucid_zabbix: not-affected (1:1.8-1)
maverick_zabbix: not-affected (1:1.8-1)
natty_zabbix: not-affected (1:1.8-1)
oneiric_zabbix: not-affected (1:1.8-1)
devel_zabbix: not-affected (1:1.8-1)