Vulnerabilities > CVE-2014-2017 - CRLF Injection vulnerability in Oxidforge Eshop
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
LOW Integrity impact
LOW Availability impact
NONE Summary
CRLF injection vulnerability in OXID eShop Professional Edition before 4.7.11 and 4.8.x before 4.8.4, Enterprise Edition before 5.0.11 and 5.1.x before 5.1.4, and Community Edition before 4.7.11 and 4.8.x before 4.8.4 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unspecified vectors.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 3 |
Common Weakness Enumeration (CWE)
Common Attack Pattern Enumeration and Classification (CAPEC)
- Command Delimiters An attack of this type exploits a programs' vulnerabilities that allows an attacker's commands to be concatenated onto a legitimate command with the intent of targeting other resources such as the file system or database. The system that uses a filter or a blacklist input validation, as opposed to whitelist validation is vulnerable to an attacker who predicts delimiters (or combinations of delimiters) not present in the filter or blacklist. As with other injection attacks, the attacker uses the command delimiter payload as an entry point to tunnel through the application and activate additional attacks through SQL queries, shell commands, network scanning, and so on.
- Web Logs Tampering Web Logs Tampering attacks involve an attacker injecting, deleting or otherwise tampering with the contents of web logs typically for the purposes of masking other malicious behavior. Additionally, writing malicious data to log files may target jobs, filters, reports, and other agents that process the logs in an asynchronous attack pattern. This pattern of attack is similar to "Log Injection-Tampering-Forging" except that in this case, the attack is targeting the logs of the web server and not the application.
Exploit-Db
| description | OXID eShop < 4.7.11/5.0.11 + < 4.8.4/5.1.4 - Multiple Vulnerabilities. CVE-2014-2016,CVE-2014-2017. Webapps exploit for php platform |
| id | EDB-ID:32375 |
| last seen | 2016-02-03 |
| modified | 2014-03-20 |
| published | 2014-03-20 |
| reporter | //sToRm |
| source | https://www.exploit-db.com/download/32375/ |
| title | OXID eShop < 4.7.11/5.0.11 + < 4.8.4/5.1.4 - Multiple Vulnerabilities |
Packetstorm
| data source | https://packetstormsecurity.com/files/download/125814/oxideshop-xsscrlf.txt |
| id | PACKETSTORM:125814 |
| last seen | 2016-12-05 |
| published | 2014-03-20 |
| reporter | storm |
| source | https://packetstormsecurity.com/files/125814/OXID-eShop-XSS-CRLF-Injection.html |
| title | OXID eShop XSS / CRLF Injection |
Seebug
bulletinFamily exploit description Bugtraq ID:66371 CVE ID:CVE-2014-2017 OXID eShop(又名OXID eSales)是一个e-commerce系统,采用PHP开发,使用MySQL来存储数据。 通过"anid", "cnid"和"listtype"参数传递给index.php的输入在用于限制HTTP头字段时缺少过滤,允许远程攻击者利用漏洞把包含任意HTTP头的应答发送给用户。 0 OXID eShop 4.x OXID eShop 5.x OXID eShop Professional, Community或Enterprise version 4.7.11/5.0.11 and 4.8.4/5.1.4已经修复该漏洞,建议用户下载更新: http://www.oxidforge.org/ id SSV:61927 last seen 2017-11-19 modified 2014-03-25 published 2014-03-25 reporter Root title OXID eShop 'index.php'多个HTTP应答拆分漏洞 bulletinFamily exploit description No description provided by source. id SSV:85667 last seen 2017-11-19 modified 2014-07-01 published 2014-07-01 reporter Root source https://www.seebug.org/vuldb/ssvid-85667 title OXID eShop < 4.7.11/5.0.11 + < 4.8.4/5.1.4 - Multiple Vulnerabilities