Lucene search
HP Zero Day InitiativeZDI-14-196HistoryJun 11, 2014 - 12:00 a.m.
AlienVault OSSIM av-centerd Util.pm framework_ip Remote Code Execution Vulnerability
2014-06-1100:00:00
HP Zero Day Initiative
www.zerodayinitiative.com
12
0.953 High
EPSS
Percentile
99.4%
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of AlienVault OSSIM. Authentication is not required to exploit this vulnerability. The specific flaw exists within the av-centerd SOAP service. The issue lies in the handling of the set_ossim_setup framework_ip requests due to a failure to safely sanitize user data before executing a command. An attacker could leverage this vulnerability to execute code with root privileges.
References
Related
zdi
zdi
checkpoint_advisories
checkpoint_advisories
packetstorm
packetstorm
AlienVault OSSIM av-centerd Command Injection
2014-06-19 00:00:00
Alienvault OSSIM av-centerd Util.pm sync_rserver Command Execution
2017-09-15 00:00:00
dsquare
dsquare
AlienVault OSSIM av-centerd Util.pm RCE
2014-06-20 00:00:00
zdt
zdt
AlienVault OSSIM av-centerd Command Injection Exploit
2014-06-20 00:00:00
prion
prion
Design/Logic Flaw
2014-06-13 14:55:00
Cross site request forgery (csrf)
2014-06-13 14:55:00
Cross site request forgery (csrf)
2014-08-21 14:55:00
cve
cve
cvelist
cvelist
openvas
openvas
AlienVault OSSIM Multiple RCE Vulnerabilities
2014-06-20 00:00:00
nvd
nvd