Arkeia Appliance Multiple Vulnerabilities Network Vulnerability

Summary

This host is running Arkeia Appliance and is prone to multiple vulnerabilities.

Impact

Successful exploitation will allow remote attackers to perform directory traversal attacks and read arbitrary files on the affected application. arbitrary data. Impact Level: Application

Solution

Upgrade to Arkeia Appliance 10.1.10 or later, For updates refer to http://www.arkeia.com/download

Insight

Multiple flaws are due, - There are no restrictions when a POST request is send to '/scripts/upload.php' thus allowing any unauthenticated client to upload any data to the /tmp/ApplianceUpdate file. - Input passed via 'lang' parameter to 'Cookie' field in HTTP header is not properly sanitised before being returned to the user.

Affected

Arkeia Appliance Version 10.0.10 and prior.

Detection

Send the crafted HTTP GET request and check is it possible to read the system file or not.

References

http://packetstormsecurity.com/files/123275
http://www.exploit-db.com/exploits/28330

Updated on 2015-03-25

Severity

Classification

CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

Related Vulnerabilities

ArticleSetup Multiple Cross-Site Scripting and SQL Injection Vulnerabilities
Atutor AContent Multiple SQL Injection and XSS Vulnerabilities
Ad Manager Pro Multiple SQL Injection And XSS Vulnerabilities
Adobe ColdFusion Multiple Vulnerabilities-02 May-2014
Avenger's News System Command Execution

Take action and discover your vulnerabilities