HTTP: Pandora FMS SQL Injection Vulnerabilities

This signature detects an attempt to exploit an Use-After-Free Vulnerability in Pandora FMS. Successful exploitation could allow remote authenticated users to execute arbitrary SQL commands.

Extended Description

Multiple SQL injection vulnerabilities in Pandora FMS before 3.1.1 allow remote authenticated users to execute arbitrary SQL commands via (1) the id_group parameter in an operation/agentes/ver_agente action to ajax.php or (2) the group_id parameter in an operation/agentes/estado_agente action to index.php, related to operation/agentes/estado_agente.php.

Affected Products

Artica pandora_fms

References

BugTraq: 45112

CVE: CVE-2010-4280

Short Name
HTTP:SQL:INJ:PANDORA-FMS
Severity
Major
Recommended
False
Recommended Action
Drop
Category
HTTP
Keywords
CVE-2010-4280 FMS Injection Pandora SQL Vulnerabilities bid:45112
Release Date
04/25/2017
Supported Platforms

srx-branch-12.3

srx-19.3

srx-branch-19.3

vsrx3bsd-19.2

srx-branch-19.4

vsrx-19.4

mx-12.3

mx-19.4

vmx-19.4

mx-19.3

vsrx3bsd-19.4

srx-19.4

vsrx-12.3

vmx-19.3

vsrx-19.2

srx-12.3

Sigpack Version
3336
False Positive
Unknown
Vendors

Artica

CVSS Score

7.5

Found a potential security threat?