Vulnerability CVE-2013-1364: Information
Description
The user.login function in Zabbix before 1.8.16 and 2.x before 2.0.5rc1 allows remote attackers to override LDAP configuration via the cnf parameter.
Severity: MEDIUM (5.0)
Fixed packages
Package name | Branch | Fixed in version | Version from repository | Errata ID | Task # | State |
---|---|---|---|---|---|---|
zabbix | p9_e2k | 5.0.12-alt0.p9.3 | 5.0.12-alt0.p9.3 | ALT-PU-2022-6601-1 | - | Fixed |
zabbix | c9f2 | 5.0.12-alt0.p9.2 | 5.0.40-alt1 | ALT-PU-2021-2282-1 | 279423 | Fixed |
References to Advisories, Solutions, and Tools
Hyperlink | Resource |
---|---|
https://support.zabbix.com/browse/ZBX-6097 | |
GLSA-201311-15 | |
http://www.zabbix.com/rn1.8.16.php |
|
55824 |
|
http://www.zabbix.com/rn2.0.5rc1.php |
|
57471 |