Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2014-9566

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2014-9566
Last Modified 11 Mar 2015 03:19:27
Published 10 Mar 2015 10:59:02
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2014-9566

Summary

Multiple SQL injection vulnerabilities in the Manage Accounts page in the AccountManagement.asmx service in the Solarwinds Orion Platform 2015.1, as used in Network Performance Monitor (NPM) before 11.5, NetFlow Traffic Analyzer (NTA) before 4.1, Network Configuration Manager (NCM) before 7.3.2, IP Address Manager (IPAM) before 4.3, User Device Tracker (UDT) before 3.2, VoIP & Network Quality Manager (VNQM) before 4.2, Server & Application Manager (SAM) before 6.2, Web Performance Monitor (WPM) before 2.2, and possibly other Solarwinds products, allow remote authenticated users to execute arbitrary SQL commands via the (1) dir or (2) sort parameter to the (a) GetAccounts or (b) GetAccountGroups endpoint.

Vulnerable Systems

Application

  • Solarwinds Orion Ip Address Manager 4.2

  • Solarwinds Orion Netflow Traffic Analyzer 4.0

  • Solarwinds Orion Network Configuration Manager 7.3.1

  • Solarwinds Orion Network Performance Monitor 11.4

  • Solarwinds Orion Server And Application Manager 6.1

  • Solarwinds Orion User Device Tracker 3.1

  • Solarwinds Orion Voip %26 Network Quality Manager 4.1

  • Solarwinds Orion Web Performance Monitor 2.1


References

MISC - https://github.com/rapid7/metasploit-framework/pull/4836

CONFIRM - http://www.solarwinds.com/documentation/orion/docs/releasenotes/releasenotes.htm

EXPLOIT-DB - 36262

MISC - http://volatile-minds.blogspot.com/2015/02/authenticated-stacked-sql-injection-in.html

FULLDISC - 20150303 Multiple SQL injections in core Orion service affecting many Solarwinds products (CVE-2014-9566)

MISC - http://packetstormsecurity.com/files/130637/Solarwinds-Orion-Service-SQL-Injection.html

OSVDB - 118746


Last Updated: 27 May 2016 11:08:02