Allegro RomPager HTTP Cookie Management Remote Code Execution Vulnerability (Misfortune Cookie)

Critical Nessus Plugin ID 80228


The remote host is affected by multiple remote code execution vulnerabilities.


According to its banner, the remote host is running a version of Allegro Software RomPager 4.07 to 4.33. It is, therefore, affected by multiple vulnerabilities :

- A flaw in HTTP cookie management in the embedded web server allows a remote attacker to execute arbitrary code with administrative privileges and to possibly conduct attacks against connected devices.

- A digest authentication buffer overflow flaw exists that allows a remote attacker to cause a denial of service or to execute arbitrary code. (CVE-2014-9223)


Contact the vendor for an updated firmware image. Allegro addressed both issues in mid-2005 with RomPager version 4.34.

See Also

Plugin Details

Severity: Critical

ID: 80228

File Name: allegro_software_rompager_webserver.nasl

Version: $Revision: 1.10 $

Type: remote

Family: Web Servers

Published: 2014/12/24

Modified: 2017/02/03

Dependencies: 10107

Risk Information

Risk Factor: Critical


Base Score: 10

Temporal Score: 8.1

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Temporal Vector: CVSS2#E:POC/RL:U/RC:UC

Vulnerability Information

CPE: cpe:/a:allegrosoft:rompager

Required KB Items: Settings/ParanoidReport

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 2005/07/01

Vulnerability Publication Date: 2014/12/18

Exploitable With


Reference Information

CVE: CVE-2014-9222, CVE-2014-9223

BID: 71744, 71756

OSVDB: 116043, 116044, 130547

CERT: 561444