HTTP: Graphite Web Unsafe Pickle Handling Remote Code Execution
This signature detects attempts to exploit a known vulnerability in Graphite. A successful attack can lead to arbitrary code execution.
Extended Description
The renderLocalView function in render/views.py in graphite-web in Graphite 0.9.5 through 0.9.10 uses the pickle Python module unsafely, which allows remote attackers to execute arbitrary code via a crafted serialized object.
Affected Products
Graphite_project graphite
References
BugTraq: 61894
CVE: CVE-2013-5093
URL: http://ceriksen.com/2013/08/20/graphite-remote-code-execution-vulnerability-advisory/
Short Name
HTTP:MISC:GRAPHITE-RCE
Severity
Major
Recommended
False
Recommended Action
Drop
Category
HTTP
Keywords
CVE-2013-5093 Code Execution Graphite Handling Pickle Remote Unsafe Web bid:61894
Release Date
11/26/2013
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3375
False Positive
Unknown
Vendors
Graphite_project
CVSS Score
6.8