CVE-2014-5210

AlienVault OSSIM < 4.7.0 - Remote Code Execution via SOAP remote_task or get_license Request

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2014-5210. PoCs published by James Fitts.

AI-analyzed exploit summary This Metasploit module exploits a command injection vulnerability in Alienvault OSSIM's av-centerd service via the get_license function. It constructs a malicious SOAP request to execute arbitrary commands, including disabling the firewall and delivering a payload.

Description

The av-centerd SOAP service in AlienVault OSSIM before 4.7.0 allows remote attackers to execute arbitrary commands via a crafted (1) remote_task or (2) get_license request, a different vulnerability than CVE-2014-3804 and CVE-2014-3805.

Exploits (1)

exploitdb WORKING POC
by James Fitts · rubyremotelinux
https://www.exploit-db.com/exploits/42697

This Metasploit module exploits a command injection vulnerability in Alienvault OSSIM's av-centerd service via the get_license function. It constructs a malicious SOAP request to execute arbitrary commands, including disabling the firewall and delivering a payload.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Alienvault OSSIM <= 4.7.0
No auth needed
Prerequisites: Network access to port 40007 · SSL enabled
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/69239
Third Party Advisory x_refsource_misc
http://www.zerodayinitiative.com/advisories/ZDI-14-294/
Vendor Advisory x_refsource_confirm
http://forums.alienvault.com/discussion/2690
Third Party Advisory x_refsource_misc
http://www.zerodayinitiative.com/advisories/ZDI-14-295/

Scores

EPSS 0.1492
EPSS Percentile 96.3%

Details

CWE
CWE-94
Status published
Products (29)
alienvault/open_source_security_information_management 1.0.4
alienvault/open_source_security_information_management 1.0.6
alienvault/open_source_security_information_management 2.1
alienvault/open_source_security_information_management 2.1.2
alienvault/open_source_security_information_management 2.1.5
alienvault/open_source_security_information_management 2.1.5-1
alienvault/open_source_security_information_management 2.1.5-2
alienvault/open_source_security_information_management 2.1.5-3
alienvault/open_source_security_information_management 3.1
alienvault/open_source_security_information_management 3.1.9
... and 19 more
Published Aug 21, 2014
Tracked Since Feb 18, 2026