Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
saintSAINT CorporationSAINT:FF98419BD3F3F264C5ADB03954E3D31E
HistorySep 02, 2014 - 12:00 a.m.

F5 rsync daemon ConfigSync interface cmi module vulnerability

2014-09-0200:00:00
SAINT Corporation
www.saintcorporation.com
29

0.099 Low

EPSS

Percentile

94.9%

JSON

Added: 09/02/2014
CVE: CVE-2014-2927
BID: 69461
OSVDB: 110595

Background

F5 BIG-IP is a suite of security, availability and acceleration products.

Problem

When configured to support failover, multiple BIG-IP products are vulnerable to an unauthenticated rsync access vulnerability that can be leveraged to upload a malicious SSH key and execute arbitrary code with root privileges.

Resolution

Upgrade to a non-vulnerable version, as reported in F5 Security Advisory SOL15235.

References

<http://support.f5.com/kb/en-us/solutions/public/15000/200/sol15236.html&gt;
<http://www.security-assessment.com/files/documents/advisory/F5_Unauthenticated_rsync_access_to_Remote_Root_Code_Execution.pdf&gt;

Limitations

The target must be configured in the high availability/failover mode.

The OpenSSH and rsync clients must be installed on the SAINTexploit host.

Platforms

Linux

Related

nessus 2
saint 3
openvas 2
f5 2
cve 1
prion 1
cvelist 1
nvd 1
nessus
nessus
F5 Networks BIG-IP : ConfigSync IP Rsync full file system access vulnerability (K15236)
2014-10-10 00:00:00
F5 Networks rsync RCE
2014-10-14 00:00:00
saint
saint
F5 rsync daemon ConfigSync interface cmi module vulnerability
2014-09-02 00:00:00
F5 rsync daemon ConfigSync interface cmi module vulnerability
2014-09-02 00:00:00
F5 rsync daemon ConfigSync interface cmi module vulnerability
2014-09-02 00:00:00
openvas
openvas
F5 Enterprise Manager - ConfigSync IP Rsync full file system access vulnerability CVE-2014-2927
2015-06-24 00:00:00
Multiple F5 Networks Products - ConfigSync IP Rsync full file system access vulnerability CVE-2014-2927 - Active Check
2015-01-19 00:00:00
f5
f5
K15236 : ConfigSync IP Rsync full file system access vulnerability CVE-2014-2927
2015-06-04 00:00:00
SOL15236 - ConfigSync IP Rsync full file system access vulnerability CVE-2014-2927
2014-08-28 00:00:00
cve
cve
CVE-2014-2927
2014-10-15 14:55:06
prion
prion
Authentication flaw
2014-10-15 14:55:00
cvelist
cvelist
CVE-2014-2927
2014-10-15 14:00:00
nvd
nvd
CVE-2014-2927
2014-10-15 14:55:06

0.099 Low

EPSS

Percentile

94.9%

JSON
Related for SAINT:FF98419BD3F3F264C5ADB03954E3D31E
nessus2saint3openvas2f52cve1prion1cvelist1nvd1