2.1

CVE-2007-6210

zabbix_agentd 1.1.4 in ZABBIX before 1.4.3 runs "UserParameter" scripts with gid 0, which might allow local users to gain privileges.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
ZabbixZabbix Agentd Version1.1.4
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.78% 0.51
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 2.1 3.9 2.9
AV:L/AC:L/Au:N/C:P/I:N/A:N
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=452682
Patch
http://secunia.com/advisories/27903
http://secunia.com/advisories/27948
http://secunia.com/advisories/27978
http://www.debian.org/security/2007/dsa-1420
http://www.securityfocus.com/bid/26680
http://www.zabbix.com/forum/showthread.php?t=8400
https://www.redhat.com/archives/fedora-package-announce/2007-December/msg00196.html
https://www.redhat.com/archives/fedora-package-announce/2007-December/msg00232.html