Lucene search
K

4 matches found

Check Point Advisories
Check Point Advisories
added 2015/03/26 12:0 a.m.4 views

AlienVault OSSIM av-centerd Util.pm remote_task Arbitrary Command Execution - Ver2 (CVE-2014-5210)

The vulnerability is due to a failure to safely sanitize remotetask SOAP requests within Util.pm. this vulnerability can be exploit by sending crafted requests to the affected service. Successful exploitation could result in arbitrary command execution with root privileges...

10CVSS6.6AI score0.14917EPSS
Exploits2
Check Point Advisories
Check Point Advisories
added 2014/09/22 12:0 a.m.11 views

AlienVault OSSIM av-centerd Util.pm remote_task Arbitrary Command Execution (CVE-2014-5210)

The vulnerability is due to a failure to safely sanitize remotetask SOAP requests within Util.pm. this vulnerability can be exploit by sending crafted requests to the affected service. Successful exploitation could result in arbitrary command execution with root privileges...

10CVSS4.6AI score0.14917EPSS
Exploits2
CVE
CVE
added 2014/08/21 2:0 p.m.78 views

CVE-2014-5210

CVE-2014-5210 affects the av-centerd SOAP service in AlienVault OSSIM prior to 4.7.0. The vulnerability arises from unsafe sanitization of remote_task (and get_license) SOAP requests in Util.pm, enabling remote attackers to execute arbitrary commands with root privileges. Exploitation details and...

10CVSS7.3AI score0.14917EPSS
Exploits2References4Affected Software1
exploitpack
exploitpack
added 2014/08/14 12:0 a.m.18 views

Alienvault Open Source SIEM (OSSIM) 4.7.0 - get_license Remote Command Execution (Metasploit)

Alienvault Open Source SIEM OSSIM 4.7.0 - getlicense Remote Command Execution Metasploit require 'msf/core' require 'rexml/document' class MetasploitModule 'Alienvault OSSIM av-centerd Command Injection getlicense', 'Description' = %q This module exploits a command injection flaw found in the...

1AI score0.14917EPSS
Exploits2
Rows per page
Query Builder