Full title: Zabbix Authenticated Remote Command Execution Vulnerability 
Category: remote exploits
Platform: linux
ZABBIX allows an administrator to create scripts that will be run on hosts. An authenticated attacker can create a script containing a payload, then a host with an IP of 127.0.0.1 and run the arbitrary script on the ZABBIX host. This Metasploit module was tested against Zabbix version 2.0.9.

# 0day.today @ http://0day.today/