CVE-2014-3804 Information

Description

The av-centerd SOAP service in AlienVault OSSIM before 4.7.0 allows remote attackers to execute arbitrary commands via a crafted (1) update_system_info_debian_package (2) ossec_task (3) set_ossim_setup admin_ip (4) sync_rserver or (5) set_ossim_setup framework_ip request a different vulnerability than CVE-2014-3805.

Reference

http://forums.alienvault.com/discussion/2690 http://zerodayinitiative.com/advisories/ZDI-14-196/ http://zerodayinitiative.com/advisories/ZDI-14-197/ http://zerodayinitiative.com/advisories/ZDI-14-200/ http://zerodayinitiative.com/advisories/ZDI-14-201/ http://zerodayinitiative.com/advisories/ZDI-14-202/ https://www.exploit-db.com/exploits/42708/