NVD

Id
31907  
Name
CVE-2014-3805  
Description
The av-centerd SOAP service in AlienVault OSSIM before 4.7.0 allows remote attackers to execute arbitrary commands via a crafted (1) get_license, (2) get_log_line, or (3) update_system/upgrade_pro_web request, a different vulnerability than CVE-2014-3804.  
Reject
 
CVSS Version
2  
CVSS Score
10  
Severity
High  
CVSS Base Score
10  
CVSS Impact Subscore
10  
CVSS Exploit Subscore
10  
CVSS Vector
(AV:N/AC:L/Au:N/C:C/I:C/A:C)  
Pub Date
2017-01-19  
Published
2014-06-13  
Modified Date
2014-06-16  
Seq
2014-3805  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
168214 31907 CVE-2014-3805 http://forums.alienvault.com/discussion/2690  View
168215 31907 CVE-2014-3805 http://zerodayinitiative.com/advisories/ZDI-14-198/  View
168216 31907 CVE-2014-3805 http://zerodayinitiative.com/advisories/ZDI-14-199/  View
168217 31907 CVE-2014-3805 http://zerodayinitiative.com/advisories/ZDI-14-204/  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
14057 JVNDB-2014-002932 AlienVault OSSIM の av-centerd SOAP サービスにおける任意のコマンドを実行される脆弱性 AlienVault OSSIM の av-centerd SOAP サービスには、任意のコマンドを実行される脆弱性が存在します。 CVE-2014-3805 71093 CVE-2014-3805 31907 10 http://jvndb.jvn.jp/ja/contents/2014/JVNDB-2014-002932.html 2014-05-05 2014-06-17 View