header-logo
Suggest Exploit
vendor:
Dragon-Fire IDS
by:
SecurityFocus
7.5
CVSS
HIGH
Remote Command Execution
78
CWE
Product Name: Dragon-Fire IDS
Affected Version From: 1
Affected Version To: 1
Patch Exists: Yes
Related CWE: N/A
CPE: N/A
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2002

Dragon-Fire IDS Remote Web Interface Insecure CGI Script

The Dragon-Fire IDS remote web interface under version 1.0 has an insecure CGI script which allows for users to remotely execute commands as the user nobody. This could lead to a remote compromise of the system running Dragon-Fire. Via the web interface for Dragon-Fire inside the IPONE field type your desired command prefaced with a | an example could be: |echo 'uname -a' The output of the command will then be displayed in the right hand window of the IDS WWW interface.

Mitigation:

Ensure that the Dragon-Fire IDS remote web interface is updated to the latest version.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/564/info

The Dragon-Fire IDS remote web interface under version 1.0 has an insecure CGI script which allows for users to remotely execute commands as the user nobody. This could lead to a remote compromise of the system running Dragon-Fire. 

Via the web interface for Dragon-Fire inside the IPONE field type your desired command prefaced with a | an example could be:

|echo 'uname -a'

The output of the command will then be displayed in the right hand window of the IDS WWW interface.

Navigation

Suggest Exploit

Services By CQR