OSSIM < 4.3.2 Multiple SQL Injection Vulnerabilities

high Nessus Plugin ID 76262

Synopsis

An application hosted on the remote web server has multiple SQL injection vulnerabilities.

Description

The version of OSSIM hosted on the remote host has multiple SQL injection vulnerabilities due to a failure to sanitize the 'date_from' parameter to multiple scripts in the '/RadarReport' and '/geoloc' paths. A remote, unauthenticated attacker could potentially exploit this vulnerability to execute arbitrary SQL commands.

It is reported that the SQL injection vulnerabilities can also be leveraged to exploit multiple reflected cross-site scripting vulnerabilities; however, Nessus did not test for this.

Solution

Upgrade to 4.3.2 or later.

Plugin Details

Severity: High

ID: 76262

File Name: ossim_web_CVE-2013-5967.nasl

Version: 1.8

Type: remote

Family: CGI abuses

Published: 6/26/2014

Updated: 1/19/2021

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 6.7

CVSS v2

Risk Factor: High

Base Score: 7.5

Temporal Score: 6.5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

Vulnerability Information

CPE: cpe:/a:alienvault:open_source_security_information_management

Required KB Items: www/PHP, www/ossim

Exploit Available: true

Exploit Ease: No exploit is required

Exploited by Nessus: true

Patch Publication Date: 10/2/2013

Vulnerability Publication Date: 10/2/2013

Reference Information

CVE: CVE-2013-5967

BID: 62790, 67180