Signature Detail

This site is deprecated. Please CLICK HERE for latest updates

Short Name	APP:MISC:ZABBIX-PROXY-CI
Severity	Major
Recommended	Yes
Recommended Action	Drop
Category	APP
Keywords	Zabbix Server Active Proxy Trapper Command Injection
Release Date	2017/05/22
Update Number	2900
Supported Platforms	idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+

APP: Zabbix Server Active Proxy Trapper Command Injection

This signature detects attempts to exploit a known vulnerability in Zabbix. Successful exploitation of this vulnerability could lead to arbitrary command execution in the context of the Zabbix process.

Extended Description

An exploitable code execution vulnerability exists in the trapper command functionality of Zabbix Server 2.4.X. A specially crafted set of packets can cause a command injection resulting in remote code execution. An attacker can make requests from an active Zabbix Proxy to trigger this vulnerability.

Affected Products

Zabbix zabbix 2.4.0
Zabbix zabbix 2.4.1
Zabbix zabbix 2.4.2
Zabbix zabbix 2.4.3
Zabbix zabbix 2.4.4
Zabbix zabbix 2.4.5
Zabbix zabbix 2.4.6
Zabbix zabbix 2.4.7
Zabbix zabbix 2.4.8
Zabbix zabbix 2.4.9

References

BugTraq: 98083
CVE: CVE-2017-2824

Signature Detail

This site is deprecated. Please CLICK HERE for latest updates

Short Name

Severity

Recommended

Recommended Action

Category

Keywords

Release Date

Update Number

Supported Platforms

APP: Zabbix Server Active Proxy Trapper Command Injection

Extended Description

Affected Products

References