Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

Ops View Pre 4.4.1 Blind SQL Injection

🗓️ 29 Oct 2013 00:00:00Reported by Jesus OquendoType 
packetstorm
 packetstorm🔗 packetstormsecurity.com👁 27 Views

Blind SQL Injection in OpsView pre 4.4.

Related
Code
ReporterTitlePublishedViews
Family
0day.today		Opsview pre 4.4.1 - Blind SQL Injection Vulnerability
1 Nov 201300:00
zdt
CVE		CVE-2013-5694
5 Nov 201320:00
cve
Cvelist		CVE-2013-5694
5 Nov 201320:00
cvelist
Exploit DB		Opsview pre 4.4.1 - Blind SQL Injection
31 Oct 201300:00
exploitdb
EUVD		EUVD-2013-5531
7 Oct 202500:30
euvd
exploitpack		Opsview pre 4.4.1 - Blind SQL Injection
31 Oct 201300:00
exploitpack
NVD		CVE-2013-5694
5 Nov 201320:55
nvd
Prion		Sql injection
5 Nov 201320:55
prion
RedhatCVE		CVE-2013-5694
22 May 202511:25
redhatcve
securityvulns		CVE-2013-5694 Blind SQL Injection in Ops View
9 Dec 201300:00
securityvulns
Rows per page
`CVE-2013-5694 Blind SQL Injection in Ops View  
Version(s): Opsview pre 4.4.1  
Author: J. Oquendo (joquendo at e-fensive dot net)  
  
  
I. ADVISORY  
  
Title: Blind SQL Injection in OpsView  
Date published: 2013-10-28  
Vendor contacted: 2013-09-04  
  
  
II. BACKGROUND  
  
Opsview is a systems management software built on open  
source software. To minimize noise, read more about it  
here  
  
http://www.opsview.com/about-us  
  
  
II. DESCRIPTION  
  
A Blind SQL injection vulnerability exists in OpsView  
"acknowledge" function. A malicious user can post bad data  
leading to a database dump, user creation, code execution,  
etc.  
  
POST /status/service/acknowledge HTTP/1.1  
Content-Length: 118  
Content-Type: application/x-www-form-urlencoded  
Host: 10.20.30.68:80  
Connection: Keep-alive  
Accept-Encoding: gzip,deflate  
User-Agent: Opera/5.54 (Windows NT 5.1; U) [en]  
  
comment=&from=http%3a%2f%2f10.20.30.68%2fstatus%2fhostgroup&notify=1&service_selection=%24%7dsql injection goes   
here%7d&submit=Submit  
  
For more on BSQLI read about it here:  
  
http://en.wikipedia.org/wiki/SQL_injection#Blind_SQL_injection  
  
  
III SOLUTION  
  
Opsview released a fix with Opsview 4.4.1  
http://docs.opsview.com/doku.php?id=opsview4.4:changes#fixes  
  
  
--   
=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+  
J. Oquendo  
SGFA, SGFE, C|EH, CNDA, CHFI, OSCP, CPT, RWSP, GREM  
  
"Where ignorance is our master, there is no possibility of  
real peace" - Dalai Lama  
  
42B0 5A53 6505 6638 44BB 3943 2BF7 D83F 210A 95AF  
http://pgp.mit.edu:11371/pks/lookup?op=get&search=0x2BF7D83F210A95AF  
`

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
29 Oct 2013 00:00Current
0.7Low risk
Vulners AI Score0.7
EPSS0.01939
vulnerabilityopsviewsql injectionsecurityopsview 4.4.1 fixj. oquendo
27