Detections
Analytics
Zabbix < 1.8.6 Multiple Vulnerabilities
medium Nessus Plugin ID 56091
Language:
Synopsis
The remote web application may be affected by multiple vulnerabilities.Description
According to its self-reported version number, the instance of Zabbix listening on the remote host is earlier than 1.8.6. It could, therefore, be affected by multiple vulnerabilities.- An input validation error exists in the script 'acknow.php' that allows arbitrary script or HTML injection via the 'backurl' parameter. (CVE-2011-2904)
- An error exists related to 'zabbix_agentd' and 'vfs.file.cksum'. An attacker could cause excessive CPU usage if the 'vfs.file.cksum' command is pointed at a special device such as '/dev/urandom'. (CVE-2011-3263)
- An information disclosure vulnerability exists in the script 'popup.php' because the 'srcfld2' parameter is not properly checked. This vulnerability can reveal sensitive information such as the application's install path. (CVE-2011-3264)
Note that Nessus has not tested for these flaws but has instead relied on the version in the Zabbix login page.
Solution
Update Zabbix to version 1.8.6 or later.See Also
http://www.nessus.org/u?ad30fa5c
https://support.zabbix.com/browse/ZBX-3794
https://support.zabbix.com/browse/ZBX-3835
Plugin Details
Severity: Medium
ID: 56091
File Name: zabbix_frontend_1_8_6.nasl
Version: 1.12
Type: remote
Family: CGI abuses
Published: 9/7/2011
Updated: 6/5/2024
Configuration: Enable paranoid mode, Enable thorough checks
Supported Sensors: Nessus
Enable CGI Scanning: true
Risk Information
VPR
Risk Factor: Medium
Score: 4.4
CVSS v2
Risk Factor: Medium
Base Score: 5
Temporal Score: 3.7
Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N
Vulnerability Information
CPE: cpe:/a:zabbix:zabbix
Required KB Items: Settings/ParanoidReport, www/zabbix
Excluded KB Items: Settings/disable_cgi_scanning
Exploit Ease: No exploit is required
Patch Publication Date: 8/4/2011
Vulnerability Publication Date: 5/23/2011