CVE-2011-3263

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2011-3263
zabbix_agentd in Zabbix before 1.8.6 and 1.9.x before 1.9.4 allows context-dependent attackers to cause a denial of service (CPU consumption) by executing the vfs.file.cksum command for a special device, as demonstrated by the /dev/urandom device.

5.0 /10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:N/AC:L/Au:N/C:N/I:N/A:P

Exploitability : 10.0 / Impact : 2.9

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact PARTIAL

References
Link Resource
http://www.zabbix.com/rn1.8.6.php Patch
https://exchange.xforce.ibmcloud.com/vulnerabilities/69378
https://support.zabbix.com/browse/ZBX-3794 Exploit
http://www.zabbix.com/rn1.8.6.php Patch
https://exchange.xforce.ibmcloud.com/vulnerabilities/69378
https://support.zabbix.com/browse/ZBX-3794 Exploit
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:zabbix:zabbix:*:*:*:*:*:*:*:*
cpe:2.3:a:zabbix:zabbix:1.1:*:*:*:*:*:*:*
cpe:2.3:a:zabbix:zabbix:1.1:beta10:*:*:*:*:*:*
cpe:2.3:a:zabbix:zabbix:1.1:beta11:*:*:*:*:*:*
cpe:2.3:a:zabbix:zabbix:1.1:beta12:*:*:*:*:*:*
cpe:2.3:a:zabbix:zabbix:1.1:beta2:*:*:*:*:*:*
cpe:2.3:a:zabbix:zabbix:1.1:beta3:*:*:*:*:*:*
cpe:2.3:a:zabbix:zabbix:1.1:beta4:*:*:*:*:*:*
cpe:2.3:a:zabbix:zabbix:1.1:beta5:*:*:*:*:*:*
cpe:2.3:a:zabbix:zabbix:1.1:beta6:*:*:*:*:*:*
cpe:2.3:a:zabbix:zabbix:1.1:beta7:*:*:*:*:*:*
cpe:2.3:a:zabbix:zabbix:1.1:beta8:*:*:*:*:*:*
cpe:2.3:a:zabbix:zabbix:1.1:beta9:*:*:*:*:*:*
cpe:2.3:a:zabbix:zabbix:1.1.1:*:*:*:*:*:*:*
cpe:2.3:a:zabbix:zabbix:1.1.2:*:*:*:*:*:*:*
cpe:2.3:a:zabbix:zabbix:1.1.3:*:*:*:*:*:*:*
cpe:2.3:a:zabbix:zabbix:1.1.4:*:*:*:*:*:*:*
cpe:2.3:a:zabbix:zabbix:1.1.5:*:*:*:*:*:*:*
cpe:2.3:a:zabbix:zabbix:1.1.6:*:*:*:*:*:*:*
cpe:2.3:a:zabbix:zabbix:1.1.7:*:*:*:*:*:*:*
cpe:2.3:a:zabbix:zabbix:1.3:beta:*:*:*:*:*:*
cpe:2.3:a:zabbix:zabbix:1.3.1:beta:*:*:*:*:*:*
cpe:2.3:a:zabbix:zabbix:1.3.2:beta:*:*:*:*:*:*
cpe:2.3:a:zabbix:zabbix:1.3.3:beta:*:*:*:*:*:*
cpe:2.3:a:zabbix:zabbix:1.3.4:beta:*:*:*:*:*:*
cpe:2.3:a:zabbix:zabbix:1.3.5:beta:*:*:*:*:*:*
cpe:2.3:a:zabbix:zabbix:1.3.6:beta:*:*:*:*:*:*
cpe:2.3:a:zabbix:zabbix:1.3.7:beta:*:*:*:*:*:*
cpe:2.3:a:zabbix:zabbix:1.3.8:beta:*:*:*:*:*:*
cpe:2.3:a:zabbix:zabbix:1.4.2:*:*:*:*:*:*:*
cpe:2.3:a:zabbix:zabbix:1.4.3:*:*:*:*:*:*:*
cpe:2.3:a:zabbix:zabbix:1.4.4:*:*:*:*:*:*:*
cpe:2.3:a:zabbix:zabbix:1.4.5:*:*:*:*:*:*:*
cpe:2.3:a:zabbix:zabbix:1.4.6:*:*:*:*:*:*:*
cpe:2.3:a:zabbix:zabbix:1.5:beta:*:*:*:*:*:*
cpe:2.3:a:zabbix:zabbix:1.5.1:beta:*:*:*:*:*:*
cpe:2.3:a:zabbix:zabbix:1.5.2:beta:*:*:*:*:*:*
cpe:2.3:a:zabbix:zabbix:1.5.3:beta:*:*:*:*:*:*
cpe:2.3:a:zabbix:zabbix:1.5.4:beta:*:*:*:*:*:*
cpe:2.3:a:zabbix:zabbix:1.6:*:*:*:*:*:*:*
cpe:2.3:a:zabbix:zabbix:1.6.1:*:*:*:*:*:*:*
cpe:2.3:a:zabbix:zabbix:1.6.2:*:*:*:*:*:*:*
cpe:2.3:a:zabbix:zabbix:1.6.3:*:*:*:*:*:*:*
cpe:2.3:a:zabbix:zabbix:1.6.4:*:*:*:*:*:*:*
cpe:2.3:a:zabbix:zabbix:1.6.5:*:*:*:*:*:*:*
cpe:2.3:a:zabbix:zabbix:1.6.6:*:*:*:*:*:*:*
cpe:2.3:a:zabbix:zabbix:1.6.7:*:*:*:*:*:*:*
cpe:2.3:a:zabbix:zabbix:1.6.8:*:*:*:*:*:*:*
cpe:2.3:a:zabbix:zabbix:1.6.9:*:*:*:*:*:*:*
cpe:2.3:a:zabbix:zabbix:1.7:*:*:*:*:*:*:*
cpe:2.3:a:zabbix:zabbix:1.7.1:*:*:*:*:*:*:*
cpe:2.3:a:zabbix:zabbix:1.7.2:*:*:*:*:*:*:*
cpe:2.3:a:zabbix:zabbix:1.7.3:*:*:*:*:*:*:*
cpe:2.3:a:zabbix:zabbix:1.7.4:*:*:*:*:*:*:*
cpe:2.3:a:zabbix:zabbix:1.8:*:*:*:*:*:*:*
cpe:2.3:a:zabbix:zabbix:1.8.1:*:*:*:*:*:*:*
cpe:2.3:a:zabbix:zabbix:1.8.2:*:*:*:*:*:*:*
cpe:2.3:a:zabbix:zabbix:1.8.3:*:*:*:*:*:*:*
cpe:2.3:a:zabbix:zabbix:1.8.3:rc1:*:*:*:*:*:*
cpe:2.3:a:zabbix:zabbix:1.8.3:rc2:*:*:*:*:*:*
cpe:2.3:a:zabbix:zabbix:1.8.3:rc3:*:*:*:*:*:*
cpe:2.3:a:zabbix:zabbix:1.8.4:*:*:*:*:*:*:*
cpe:2.3:a:zabbix:zabbix:1.8.4:rc1:*:*:*:*:*:*
cpe:2.3:a:zabbix:zabbix:1.8.4:rc2:*:*:*:*:*:*
cpe:2.3:a:zabbix:zabbix:1.8.4:rc3:*:*:*:*:*:*
cpe:2.3:a:zabbix:zabbix:1.8.4:rc4:*:*:*:*:*:*
cpe:2.3:a:zabbix:zabbix:1.8.5:rc1:*:*:*:*:*:*

Configuration 2 (hide)

OR cpe:2.3:a:zabbix:zabbix:1.9.0:alpha:*:*:*:*:*:*
cpe:2.3:a:zabbix:zabbix:1.9.1:alpha:*:*:*:*:*:*
cpe:2.3:a:zabbix:zabbix:1.9.2:alpha:*:*:*:*:*:*
cpe:2.3:a:zabbix:zabbix:1.9.3:alpha:*:*:*:*:*:*
History

21 Nov 2024, 01:30

Type Values Removed Values Added
References () http://www.zabbix.com/rn1.8.6.php - Patch () http://www.zabbix.com/rn1.8.6.php - Patch
References () https://exchange.xforce.ibmcloud.com/vulnerabilities/69378 - () https://exchange.xforce.ibmcloud.com/vulnerabilities/69378 -
References () https://support.zabbix.com/browse/ZBX-3794 - Exploit () https://support.zabbix.com/browse/ZBX-3794 - Exploit
Information

Published : 2011-08-19 21:55

Updated : 2025-04-11 00:51

NVD link : CVE-2011-3263

Mitre link : CVE-2011-3263

CVE.ORG link : CVE-2011-3263

JSON object : View

Products Affected

zabbix

  • zabbix
CWE
CWE-399

Resource Management Errors