Red Hat Bugzilla – Bug 437848
CVE-2008-1353 zabbix file descriptor consumption by authorized hosts
Last modified: 2015-02-16 10:41:25 EST
Common Vulnerabilities and Exposures assigned an identifier CVE-2008-1353 to the following vulnerability:
zabbix_agentd in ZABBIX 1.4.4 allows remote attackers to cause a denial of service (CPU and connection consumption) via multiple vfs.file.cksum commands with a special device node such as /dev/urandom or /dev/zero.
Fedora Project does not consider this a security issue.
Needs authorization. This kind of issues can not really be prevented. (Consider
cases with automouner running and non-responding NFS server, etc., etc.).