CVE-2009-4500

CVE-2009-4500 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:N/A:P

The process_trap function in trapper/trapper.c in Zabbix Server before 1.6.6 allows remote attackers to cause a denial of service (crash) via a crafted request with data that lacks an expected : (colon) separator, which triggers a NULL pointer dereference.

Learn more about our Cis Benchmark Audit For Server Software.