漏洞标题
N/A
漏洞描述信息
Sophos Web Appliance远程/安全Web gateway服务器(版本4.2.1.3)在其Web管理界面中存在远程命令注入漏洞。这些漏洞发生在/controllers/MgrDiagnosticTools.php(/控制器/MgrDiagnosticTools.php)组件中,该组件负责使用UNIX wget工具进行诊断测试。应用程序在调用executeCommand类函数($this->dtObj->executeCommand)前未正确 escape 传入的'url'变量信息。此函数使用未净化的 user input 调用exec(),允许远程命令注入。包含漏洞页面/控制器/MgrDiagnosticTools.php 通过管理界面提供的内置命令访问。调用该漏洞页面的命令(传入'section'参数)为:'configuration'。利用此漏洞会导致在'spiderman'用户账户下的远程机器的shell访问。
CVSS信息
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
漏洞类别
N/A
漏洞标题
N/A
漏洞描述信息
The Sophos Web Appliance Remote / Secure Web Gateway server (version 4.2.1.3) is vulnerable to a Remote Command Injection vulnerability in its web administrative interface. These vulnerabilities occur in MgrDiagnosticTools.php (/controllers/MgrDiagnosticTools.php), in the component responsible for performing diagnostic tests with the UNIX wget utility. The application doesn't properly escape the information passed in the 'url' variable before calling the executeCommand class function ($this->dtObj->executeCommand). This function calls exec() with unsanitized user input allowing for remote command injection. The page that contains the vulnerabilities, /controllers/MgrDiagnosticTools.php, is accessed by a built-in command answered by the administrative interface. The command that calls to that vulnerable page (passed in the 'section' parameter) is: 'configuration'. Exploitation of this vulnerability yields shell access to the remote machine under the 'spiderman' user account.
CVSS信息
N/A
漏洞类别
N/A
漏洞标题
Sophos Web Appliance 安全漏洞
漏洞描述信息
Sophos Web Appliance(SWA)是英国Sophos公司的一套Web安全网关产品。该产品支持实时网络威胁防护、自定义Web过滤和动态控制应用程序等。 Sophos Web Appliance 4.2.1.3版本中的Web管理界面的MgrDiagnosticTools.php(/controllers/MgrDiagnosticTools.php)文件存在远程代码注入漏洞。攻击者可利用该漏洞获取远程机器的shell访问权限。
CVSS信息
N/A
漏洞类别
代码注入