Intrusion Prevention

Zabbix.Server.Active.Proxy.Trapper.Command.Injection

Description

This indicates an attack attempt to exploit a Command Injection vulnerability in Zabbix.
The vulnerability is due to a design flaw when the vulnerable software handles a crafted user supplied request. A remote attacker may be able to exploit this to execute arbitrary code within the context of the application, via a crafted request.

Affected Products

ZABBIX ZABBIX 2.4.7 to 2.4.8.r1
ZABBIX ZABBIX 2.0.x prior to 2.0.21rc1
ZABBIX ZABBIX 2.2.x prior to 2.2.18rc1
ZABBIX ZABBIX 3.0.x prior to 3.0.9rc1
ZABBIX ZABBIX 3.2.x prior to 3.2.5rc1
ZABBIX ZABBIX 3.4.x prior to 3.4.0alpha1

Impact

System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Apply the most recent upgrade or patch from the vendor.
https://support.zabbix.com/browse/ZBX-12075

CVE References

CVE-2017-2824