Total vulnerabilities in the database
The zbx_get_next_field function in libs/zbxcommon/str.c in Zabbix Server before 1.6.8 allows remote attackers to cause a denial of service (crash) via a request that lacks expected separators, which triggers a NULL pointer dereference, as demonstrated using the Command keyword.
Software | From | Fixed in |
---|---|---|
zabbix / zabbix | 1.1.2 | 1.1.2.x |
zabbix / zabbix | 1.1.4 | 1.1.4.x |
zabbix / zabbix | 1.4.3 | 1.4.3.x |
zabbix / zabbix | - | 1.6.7.x |
zabbix / zabbix | 1.4.6 | 1.4.6.x |
zabbix / zabbix | 1.4.4 | 1.4.4.x |
zabbix / zabbix | 1.1.3 | 1.1.3.x |
zabbix / zabbix | 1.6.6 | 1.6.6.x |
zabbix / zabbix | 1.4.2 | 1.4.2.x |
zabbix / zabbix | 1.1.5 | 1.1.5.x |