Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
655
VMScore

CVE-2013-3628

Published: 07/02/2020 Updated: 10/02/2020
CVSS v2 Base Score: 6.5 | Impact Score: 6.4 | Exploitability Score: 8
CVSS v3 Base Score: 8.8 | Impact Score: 5.9 | Exploitability Score: 2.8
VMScore: 655
Vector: AV:N/AC:L/Au:S/C:P/I:P/A:P
Subscribe to Zabbix

Vulnerability Summary

Zabbix 2.0.9 has an Arbitrary Command Execution Vulnerability

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

zabbix zabbix 2.0.9

Exploits

Exploit DB: Zabbix - (Authenticated) Remote Command Execution (Metasploit)
# # This module requires Metasploit: http//metasploitcom/download # Current source: githubcom/rapid7/metasploit-framework ## require 'msf/core' class Metasploit4 < Msf::Exploit::Remote Rank = ExcellentRanking include Msf::Exploit::Remote::HttpClient def initialize(info={}) super(update_info(info, 'Name' =& ...

Github Repositories

https://github.com/ArianeBlow/Zabbox_WriteUp

Zabbox_WriteUp Starting with NMAP : Nmap done: 1 IP address (1 host up) scanned in 043 seconds root@kali:~/CTF# nmap -p- 10102875 -sV Starting Nmap 780 ( nmaporg ) at 2021-12-13 09:40 UTC Nmap scan report for ip-10-10-28-75eu-west-1computeinternal (10102875) Host is up (000048s latency) Not shown: 65528 closed ports PORT STATE SERVICE VERS

References

CWE-74http://www.securityfocus.com/bid/63453http://www.exploit-db.com/exploits/29321https://community.rapid7.com/community/metasploit/blog/2013/10/30/seven-tricks-and-treatshttps://community.rapid7.com/community/metasploit/blog/2013/10/30/seven-foss-disclosures-part-onehttps://nvd.nist.govhttps://github.com/ArianeBlow/Zabbox_WriteUphttps://www.exploit-db.com/exploits/29321/
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
client sideCVE-2023-31889template injectionCVE-2024-4304CVE-2006-4304CVE-2024-33272type confusionCVE-2024-21345CVE-2024-33271
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook