4 matches found
AlienVault OSSIM av-centerd Util.pm remote_task Arbitrary Command Execution - Ver2 (CVE-2014-5210)
The vulnerability is due to a failure to safely sanitize remotetask SOAP requests within Util.pm. this vulnerability can be exploit by sending crafted requests to the affected service. Successful exploitation could result in arbitrary command execution with root privileges...
AlienVault OSSIM av-centerd Util.pm remote_task Arbitrary Command Execution (CVE-2014-5210)
The vulnerability is due to a failure to safely sanitize remotetask SOAP requests within Util.pm. this vulnerability can be exploit by sending crafted requests to the affected service. Successful exploitation could result in arbitrary command execution with root privileges...
CVE-2014-5210
CVE-2014-5210 affects the av-centerd SOAP service in AlienVault OSSIM prior to 4.7.0. The vulnerability arises from unsafe sanitization of remote_task (and get_license) SOAP requests in Util.pm, enabling remote attackers to execute arbitrary commands with root privileges. Exploitation details and...
Alienvault Open Source SIEM (OSSIM) 4.7.0 - get_license Remote Command Execution (Metasploit)
Alienvault Open Source SIEM OSSIM 4.7.0 - getlicense Remote Command Execution Metasploit require 'msf/core' require 'rexml/document' class MetasploitModule 'Alienvault OSSIM av-centerd Command Injection getlicense', 'Description' = %q This module exploits a command injection flaw found in the...