HTTP: ESF pfSense webConfigurator firewall_aliases_edit.php Input Validation Error
This signature detects attempts to exploit a known vulnerability in Electric Sheep Fencing pfSense firewall. The vulnerability is due to insufficient validation of user supplied input when processing the addressN parameter in firewall_aliases_edit.php. A remote authenticated attacker could exploit this vulnerability by sending a malicious request using the vulnerable parameter to the firewall. Successful exploitation could lead to remote code execution under the security context of the root user.
Short Name
HTTP:MISC:ESF-PFSENSE-RCE
Severity
Major
Recommended
False
Recommended Action
Drop
Category
HTTP
Keywords
ESF Error Input Validation firewall_aliases_edit.php pfSense webConfigurator
Release Date
03/07/2014
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3324
False Positive
Unknown