CVE-2013-5572

Related Files

Zabbix 2.0.5 Password Disclosure

Posted Feb 23, 2015

Authored by Pablo Gonzalez | Site metasploit.com

Zabbix 2.0.5 allows remote authenticated users to discover the LDAP bind password by leveraging management-console access and reading the ldap_bind_password value in the HTML source code.

tags | exploit, remote, info disclosure

advisories | CVE-2013-5572, OSVDB-97811

SHA-256 | 327557842dd7782175a33303962605165ac096158c48e68bfc6b59817ebd0933

Download | Favorite | View

Gentoo Linux Security Advisory 201311-15

Posted Nov 25, 2013

Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201311-15 - Multiple vulnerabilities have been found in Zabbix, possibly leading to SQL injection attacks, Denial of Service, or information disclosure. Versions less than 2.0.9_rc1-r2 are affected.

tags | advisory, denial of service, vulnerability, sql injection, info disclosure

systems | linux, gentoo

advisories | CVE-2010-1277, CVE-2011-2904, CVE-2011-3263, CVE-2011-4674, CVE-2012-3435, CVE-2013-1364, CVE-2013-5572

SHA-256 | 376284ead2ebc1de7d71b4043ed1c195b1d07fa77b9a865731ec3db09ef944b1

Download | Favorite | View

Zabbix 2.0.5 Password Leak

Posted Sep 25, 2013

Authored by Pablo Gonzalez, Chema Alonso, German Sanchez

Zabbix version 2.0.5 suffers from an issue where it allows for the disclosure of a user's password.

tags | advisory

advisories | CVE-2013-5572

SHA-256 | cf632cf260f0dd10243a64e66e97a8eb0ca481c0cc6b35ff2633b0cd564cacf9

Download | Favorite | View