CVE-2014-3804

Alienvault Open Source Security Infor... - Code Injection

Title source: rule

Description

The av-centerd SOAP service in AlienVault OSSIM before 4.7.0 allows remote attackers to execute arbitrary commands via a crafted (1) update_system_info_debian_package, (2) ossec_task, (3) set_ossim_setup admin_ip, (4) sync_rserver, or (5) set_ossim_setup framework_ip request, a different vulnerability than CVE-2014-3805.

Exploits (3)

exploitdb WORKING POC VERIFIED
by Metasploit · rubyremotelinux
https://www.exploit-db.com/exploits/33865
exploitdb WORKING POC
by James Fitts · rubyremotelinux
https://www.exploit-db.com/exploits/42708
metasploit WORKING POC EXCELLENT
by Unknown, juan vazquez · rubypocunix
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/linux/ids/alienvault_centerd_soap_exec.rb

References (7)

Scores

EPSS 0.7933
EPSS Percentile 99.1%

Details

CWE
CWE-94
Status published
Products (17)
alienvault/open_source_security_information_management 4.0
alienvault/open_source_security_information_management 4.0.3
alienvault/open_source_security_information_management 4.0.4
alienvault/open_source_security_information_management 4.1
alienvault/open_source_security_information_management 4.1.2
alienvault/open_source_security_information_management 4.1.3
alienvault/open_source_security_information_management 4.2
alienvault/open_source_security_information_management 4.2.2
alienvault/open_source_security_information_management 4.2.3
alienvault/open_source_security_information_management 4.3
... and 7 more
Published Jun 13, 2014
Tracked Since Feb 18, 2026