Home Packages KEV Critical Insights Jobs Pricing

Loading…

Data from OSV.dev, CISA KEV, and FIRST EPSS.Sync status GitHub

CVE-2007-6210 — zabbix - programming error · VulnScope

CVE-2007-6210

zabbix - programming error

EPSS 0.15%

Description

zabbix_agentd 1.1.4 in ZABBIX before 1.4.3 runs "UserParameter" scripts with gid 0, which might allow local users to gain privileges.

How to fix CVE-2007-6210

To remediate CVE-2007-6210, upgrade the affected package to a fixed version below.

Debian/zabbix—upgrade to 1:1.4.2-4 or later
Debian/zabbix—upgrade to 1:1.1.4-10etch1 or later
Debian/zabbix—upgrade to 1:1.4.1-4+lenny1 or later

Is CVE-2007-6210 being exploited?

Low — EPSS is 0.1%, meaning exploitation activity has not been observed at scale.

Affected packages (3)

from 0, < 1:1.4.2-4
from 0, < 1:1.1.4-10etch1
from 0, < 1:1.4.1-4+lenny1

References (1)

ADVISORYsecurity-tracker.debian.org/tracker/CVE-2007-6210

Metadata

Published: 12/4/2007
Modified: 3/9/2026

Also known as:

DSA-1420-1dsa
DEBIAN-CVE-2007-6210debian
DTSA-93-1other