Vulnerabilities > CVE-2017-6972 - Improper Check for Dropped Privileges vulnerability in multiple products

CVSS 10.0 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

COMPLETE

network

low complexity

alienvault

nfsen

CWE-273

critical

exploit available

NVD

Published: 2017-03-22

Updated: 2019-10-03

Summary

AlienVault USM and OSSIM before 5.3.7 and NfSen before 1.3.8 have an error in privilege dropping and unnecessarily execute the NfSen Perl code as root, aka AlienVault ID ENG-104945, a different vulnerability than CVE-2017-6970 and CVE-2017-6971.

Vulnerable Configurations

Part	Description	Count
Application	Alienvault Alienvault Ossim * Alienvault Unified Security Management 4.14	2
Application	Nfsen Nfsen Nfsen - Nfsen Nfsen 1.2.3	2

Common Weakness Enumeration (CWE)

CWE-273 - Improper Check for Dropped Privileges

Exploit-Db

description	NfSen < 1.3.7 / AlienVault OSSIM 4.3.1 - 'customfmt' Command Injection. CVE-2017-6972,CVE-2017-7175. Webapps exploit for Linux platform
file	exploits/linux/webapps/42314.txt
id	EDB-ID:42314
last seen	2017-07-11
modified	2017-07-11
platform	linux
port
published	2017-07-11
reporter	Exploit-DB
source	https://www.exploit-db.com/download/42314/
title	NfSen < 1.3.7 / AlienVault OSSIM 4.3.1 - 'customfmt' Command Injection
type	webapps

Packetstorm

data source	https://packetstormsecurity.com/files/download/143325/nfsenalienvaultcustomfnt-exec.txt
id	PACKETSTORM:143325
last seen	2017-07-12
published	2017-07-11
reporter	Paul Taylor
source	https://packetstormsecurity.com/files/143325/NfSen-1.3.7-AlienVault-OSSIM-4.3.1-customfnt-Command-Injection.html
title	NfSen 1.3.7 / AlienVault OSSIM 4.3.1 customfnt Command Injection

Summary

Vulnerable Configurations

Common Weakness Enumeration (CWE)

Exploit-Db

Packetstorm

References