Ecava IntegraXor < 4.2.4458 Multiple Vulnerabilities

high Nessus Network Monitor Plugin ID 8400

Synopsis

A vulnerable version of Ecava IntegraXor has been detected.

Description

Ecava IntegraXor versions prior to 4.2.4458 contain multiple vulnerabilities:

- IntegraXor contains a security bypass vulnerability that allows the guest user to execute SQL SELECT queries and upload potentially malicious files. (CVE-2014-0786)

- IntegraXor allows remote attackers to read or write arbitrary files, obtain sensitive information or cause a denial of service (disk consumption) via the CSV export feature. (CVE-2014-2375)

- IntegraXor contains an SQL injection vulnerability that an attacker could use to read arbitrary files from the server, connect to other SQL databases, and read data from tables that are normally restricted. An attacker could cause a denial of service by using specially crafted SQL queries or could manipulate data within the tables. (CVE-2014-2376)

- IntegraXor uses built-in application tags. These application tags disclose information that could be used to identify full path names of files, which can be leveraged with the SQL injection vulnerability. (CVE-2014-2377)

Solution

The vendor patched these vulnerabilities in 4.2.4458 but recommends upgrading to official release 4.2.4460 or later.

See Also

http://www.nessus.org/u?063b0edb

https://ics-cert.us-cert.gov/advisories/ICSA-14-224-01

Plugin Details

Severity: High

ID: 8400

Family: SCADA

Published: 9/23/2014

Updated: 3/6/2019

Nessus ID: 77964

Risk Information

VPR

Risk Factor: Medium

Score: 5.8

CVSS v2

Risk Factor: High

Base Score: 9

Temporal Score: 7

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:C

CVSS v3

Risk Factor: High

Base Score: 8.6

Temporal Score: 7.7

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H

Temporal Vector: CVSS:3.0/E:P/RL:O/RC:C

Vulnerability Information

CPE: cpe:/a:ecava:integraxor

Patch Publication Date: 9/11/2014

Vulnerability Publication Date: 9/11/2014

Reference Information

CVE: CVE-2014-0786, CVE-2014-2375, CVE-2014-2376, CVE-2014-2377

BID: 69776, 69774, 69772, 69767, 66554