Snare Agent for Linux < 1.7.0 / 2.0.0 Multiple Vulnerabilities
Medium Nessus Plugin ID 63334
SynopsisThe remote web server hosts an auditing application that is affected by multiple vulnerabilities.
DescriptionAccording to its self-reported version number, the installation of Snare Agent for Linux hosted on the remote web server is affected by multiple vulnerabilities in the optionally configured web interface:
- The web interface discloses a hashed password for remote logins. An attacker can view the page source at /remote and see the hashed password in the 'RemotePassword' field. (CVE-2011-5247)
- The web interface suffers from a cross-site scripting vulnerability because the application fails to sanitize input passed via logged events. An attacker could create a specially crafted request that would execute arbitrary script code in a user's browser.
- The web interface suffers from a cross-site request forgery (CSRF) vulnerability because it fails to properly implement the 'ChToken' parameter used to prevent CSRF attacks. (CVE-2011-5250)
SolutionUpgrade to version 1.7.0 / 2.0.0 or later.