Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The NET_TCP_LISTEN function in net.c in Zabbix Agent before 1.6.7, when running on FreeBSD or Solaris, allows remote attackers to bypass the EnableRemoteCommands setting and execute arbitrary commands via shell metacharacters in the argument to net.tcp.listen. NOTE: this attack is limited to attacks from trusted IP addresses.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Zabbix Agent NET_TCP_LISTEN函数权限许可和安全绕过漏洞
Vulnerability Description
Zabbix Agent的net.c中的NET_TCP_LISTEN函数中, 当FreeBSD或Solaris运行时, 远程攻击者可以借助net.tcp.listen中的参数的shell字符绕过EnableRemoteCommands设置并执行任意指令。
CVSS Information
N/A
Vulnerability Type
N/A