CVE-2009-4500

EPSS 0.73%

Published: 12/31/2009Modified: 4/28/2026

Also known as:DEBIAN-CVE-2009-4500

Description

The process_trap function in trapper/trapper.c in Zabbix Server before 1.6.6 allows remote attackers to cause a denial of service (crash) via a crafted request with data that lacks an expected : (colon) separator, which triggers a NULL pointer dereference.

Affected packages (1)

Debian/zabbixfrom 0, < 1:1.8-1

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2009-4500