vendor:
Centreon
by:
MaZ, juan vazquez
N/A
CVSS
N/A
SQL Injection and Command Injection
89,78
CWE
Product Name: Centreon
Affected Version From: Centreon 2.5.1 and prior, Centreon Enterprise Server 2.2 and prior
Affected Version To: Centreon Enterprise Server 2.2
Patch Exists: NO
Related CWE: CVE-2014-3828, CVE-2014-3829
CPE: N/A
Other Scripts:
https://www.infosecmatter.com/nessus-plugin-library/?id=80224, https://www.infosecmatter.com/nessus-plugin-library/?id=80226, https://www.infosecmatter.com/metasploit-module-library/?mm=exploit/linux/http/centreon_sqli_exec, https://www.infosecmatter.com/metasploit-module-library/?mm=auxiliary/scanner/http/manageengine_deviceexpert_user_creds, https://www.infosecmatter.com/list-of-metasploit-linux-exploits-detailed-spreadsheet/, https://www.infosecmatter.com/nessus-plugin-library/?id=75055, https://www.infosecmatter.com/nessus-plugin-library/?id=80224, https://www.infosecmatter.com/metasploit-module-library/?mm=exploit/linux/http/centreon_sqli_exec, https://www.infosecmatter.com/nessus-plugin-library/?id=79011, https://www.infosecmatter.com/nessus-plugin-library/?id=70908, https://www.infosecmatter.com/nessus-plugin-library/?id=70897, https://www.infosecmatter.com/nessus-plugin-library/?id=73968, https://www.infosecmatter.com/nessus-plugin-library/?id=73970, https://www.infosecmatter.com/nessus-plugin-library/?id=73969, https://www.infosecmatter.com/nessus-plugin-library/?id=78984, https://www.infosecmatter.com/nessus-plugin-library/?id=70793
Tags: N/A
CVSS Metrics: N/A
Nuclei References:
N/A
Nuclei Metadata: N/A
Platforms Tested: Unix
2014
Centreon SQL and Command Injection
This module exploits several vulnerabilities on Centreon 2.5.1 and prior and Centreon Enterprise Server 2.2 and prior. Due to a combination of SQL injection and command injection in the displayServiceStatus.php component, it is possible to execute arbitrary commands as long as there is a valid session registered in the centreon.session table. In order to have a valid session, all it takes is a successful login from anybody. The exploit itself does not require any authentication. This module has been tested successfully on Centreon Enterprise Server 2.2.
Mitigation:
No mitigation available