Show filters
7 Total Results
Displaying 1-7 of 7
Sort by:
Attacker Value
Unknown

CVE-2014-5210

Disclosure Date: August 21, 2014 (last updated October 05, 2023)
The av-centerd SOAP service in AlienVault OSSIM before 4.7.0 allows remote attackers to execute arbitrary commands via a crafted (1) remote_task or (2) get_license request, a different vulnerability than CVE-2014-3804 and CVE-2014-3805.
0
0
Attacker Value
Unknown

CVE-2014-5383

Disclosure Date: August 21, 2014 (last updated October 05, 2023)
SQL injection vulnerability in AlienVault OSSIM before 4.7.0 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.
0
0
Attacker Value
Unknown

CVE-2014-4151

Disclosure Date: June 18, 2014 (last updated October 05, 2023)
The av-centerd SOAP service in AlienVault OSSIM before 4.8.0 allows remote attackers to create arbitrary files and execute arbitrary code via a crafted set_file request.
0
0
Attacker Value
Unknown

CVE-2014-4152

Disclosure Date: June 18, 2014 (last updated October 05, 2023)
The av-centerd SOAP service in AlienVault OSSIM before 4.8.0 allows remote attackers to execute arbitrary code via a crafted remote_task request, related to injecting an ssh public key.
0
0
Attacker Value
Unknown

CVE-2014-4153

Disclosure Date: June 18, 2014 (last updated October 05, 2023)
The av-centerd SOAP service in AlienVault OSSIM before 4.8.0 allows remote attackers to read arbitrary files via a crafted get_file request.
0
0
Attacker Value
Unknown

CVE-2014-3804

Disclosure Date: June 13, 2014 (last updated October 05, 2023)
The av-centerd SOAP service in AlienVault OSSIM before 4.7.0 allows remote attackers to execute arbitrary commands via a crafted (1) update_system_info_debian_package, (2) ossec_task, (3) set_ossim_setup admin_ip, (4) sync_rserver, or (5) set_ossim_setup framework_ip request, a different vulnerability than CVE-2014-3805.
0
0
Attacker Value
Unknown

CVE-2014-3805

Disclosure Date: June 13, 2014 (last updated October 05, 2023)
The av-centerd SOAP service in AlienVault OSSIM before 4.7.0 allows remote attackers to execute arbitrary commands via a crafted (1) get_license, (2) get_log_line, or (3) update_system/upgrade_pro_web request, a different vulnerability than CVE-2014-3804.
0
0