CVE-2010-4099
published 2010-10-27CVE-2010-4099: ess.pm in NitroSecurity NitroView ESM 8.4.0a, when ESSPMDebug is enabled, allows remote attackers to execute arbitrary commands via shell metacharacters in the…
PriorityP350medium6.8CVSS 2.0
AVNACMAuNCPIPAP
EXPLOIT
EPSS
2.68%
83.9th percentile
ess.pm in NitroSecurity NitroView ESM 8.4.0a, when ESSPMDebug is enabled, allows remote attackers to execute arbitrary commands via shell metacharacters in the Request parameter to ess.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| nitrosecurity | nitroview_esm_software | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
NitroView ESM - 'ess.pm' Remote Command Execution
exploitdb·2010-10-26
CVE-2010-4099 NitroView ESM - 'ess.pm' Remote Command Execution
NitroView ESM - 'ess.pm' Remote Command Execution
---
source: https://www.securityfocus.com/bid/44421/info
NitroView ESM is prone to a remote command-execution vulnerability because it fails to adequately sanitize user-supplied input.
Successful attacks may allow an attacker to execute arbitrary commands on the appliance in the context of the webserver process.
NitroView ESM 8.4.0a is affected; other versions may also be vulnerable.
[*] Tested on v8.4.0a "NitroSecurity 2.6.22.19-24nssmp64 GNU/Linux" [*] No authentication required [*] "ESSPMDebug=1" in "/usr/local/ess/CPConsoleServer.cfg" required >/tmp/test;'"
Exploit-DB
NitroSecurity ESM 8.4.0a - Remote Code Execution
exploitdb·2010-10-26
CVE-2010-4099 NitroSecurity ESM 8.4.0a - Remote Code Execution
NitroSecurity ESM 8.4.0a - Remote Code Execution
---
-- Product description:
NitroView ESM is an enterprise-class security information and event
management system that identifies, correlates, and remediates threats
faster than any other SIEM on the market.
-- Problem Description:
During research it was found that perl module "ess.pm" is prone to
remote code execution vulnerability due to lack of user input
validation.
-- Research Environment:
The vulnerability was found and tested on ESM 8.4.0a (NitroSecurity
2.6.22.19-24nssmp64 GNU/Linux).
-- Requirements:
During the research "ESSPMDebug=1" option in
"/usr/local/ess/CPConsoleServer.cfg" was required. No authentication
in NitroSecurity ESM was required to successfuly conduct the attack.
-- Technical Details:
Because of the "system()"
No writeups or analysis indexed.
http://www.exploit-db.com/exploits/15318http://www.securityfocus.com/bid/44421http://www.securitytracker.com/id?1024639https://exchange.xforce.ibmcloud.com/vulnerabilities/62768http://www.exploit-db.com/exploits/15318http://www.securityfocus.com/bid/44421http://www.securitytracker.com/id?1024639https://exchange.xforce.ibmcloud.com/vulnerabilities/62768
2010-10-27
Published