Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
9
CVSSv2

CVE-2016-9553

Published: 28/01/2017 Updated: 08/03/2017
CVSS v2 Base Score: 9 | Impact Score: 10 | Exploitability Score: 8
CVSS v3 Base Score: 7.2 | Impact Score: 5.9 | Exploitability Score: 1.2
VMScore: 905
Vector: AV:N/AC:L/Au:S/C:C/I:C/A:C
Subscribe to Web Appliance

Vulnerability Summary

The Sophos Web Appliance (version 4.2.1.3) is vulnerable to two Remote Command Injection vulnerabilities affecting its web administrative interface. These vulnerabilities occur in the MgrReport.php (/controllers/MgrReport.php) component responsible for blocking and unblocking IP addresses from accessing the device. The device doesn't properly escape the information passed in the variables 'unblockip' and 'blockip' before calling the shell_exec() function which allows for system commands to be injected into the device. The code erroneously suggests that the information handled is protected by utilizing the variable name 'escapedips' - however this was not the case. The Sophos ID is NSWA-1258.

Vulnerable Product Search on Vulmon Subscribe to Product

sophos web appliance 4.2.1.3

Exploits

Exploit DB: Sophos Web Appliance 4.2.1.3 - block/unblock Remote Command Injection (Metasploit)
# Exploit Title: Sophos Web Appliance UnBlock/Block-IP Remote Command Injection Vulnerablity # Date: 12/12/2016 # Exploit Author: xort @ Critical Start # Vendor Homepage: wwwsophoscom # Software Link: sophoscom/en-us/products/secure-web-gatewayaspx # Version: 4213 # Tested on: 4213 # # CVE : CVE-2016-9553 # vuln 1: unblocki ...
Exploit DB: Sophos Web Appliance 4.2.1.3 Block / Unblock
This Metasploit module exploits two separate remote command injection vulnerabilities in the Sophos Web Appliance versions 4213 and below via the web administration interface By sending a specially crafted request it's possible to inject system commands ...
Exploit DB: Sophos Web Appliance 4.2.1.3 Remote Command Injection
Sophos Web Appliance version 4213 is vulnerable to two remote command injection vulnerabilities ...

References

CWE-77https://community.sophos.com/products/web-appliance/b/blog/posts/release-of-swa-version-4-3-1http://swa.sophos.com/rn/swa/concepts/ReleaseNotes_4.3.1.htmlhttp://www.securityfocus.com/bid/95853http://pastebin.com/DUYuN0U5https://nvd.nist.govhttps://www.exploit-db.com/exploits/41413/
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4644unprivilegedCVE-2024-3494CVE-2024-22460CVE-2024-26026CVE-2024-23473firewallCVE-2024-28889XML external entity
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook