Lucene search
HP Zero Day InitiativeZDI-14-203HistoryJun 11, 2014 - 12:00 a.m.
AlienVault OSSIM av-centerd Util.pm set_file Remote Code Execution Vulnerability
2014-06-1100:00:00
HP Zero Day Initiative
www.zerodayinitiative.com
14
EPSS
0.952
Percentile
99.4%
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of AlienVault OSSIM. Authentication is not required to exploit this vulnerability. The specific flaw exists within the av-centerd SOAP service. The issue lies in the handling of the set_file requests due to a failure to safely sanitize user data before executing a command. An attacker could leverage this vulnerability to execute code with root privileges.
References
Related
packetstorm
packetstorm
AlienVault OSSIM av-centerd Command Injection
2014-06-19 00:00:00
Alienvault OSSIM av-centerd Util.pm sync_rserver Command Execution
2017-09-15 00:00:00
checkpoint_advisories
checkpoint_advisories
exploitdb
exploitdb
zdt
zdt
AlienVault OSSIM av-centerd Command Injection Exploit
2014-06-20 00:00:00
Alienvault OSSIM av-centerd Util.pm sync_rserver - Command Execution Exploit
2017-09-13 00:00:00
metasploit
metasploit
AlienVault OSSIM av-centerd Command Injection
2014-06-16 17:10:30
zdi
zdi
dsquare
dsquare
AlienVault OSSIM av-centerd Util.pm RCE
2014-06-20 00:00:00
openvas
openvas
AlienVault OSSIM Multiple RCE Vulnerabilities
2014-06-20 00:00:00
cvelist
cvelist
cve
cve
prion
prion
Cross site request forgery (csrf)
2014-06-13 14:55:00
Design/Logic Flaw
2014-06-13 14:55:00
Cross site request forgery (csrf)
2014-08-21 14:55:00
nvd
nvd