[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

CSRF Vulnerability in OSSIM 2.2.1

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: CSRF Vulnerability in OSSIM 2.2.1
From: nicolas.grandjean@xxxxxxxx
Date: Thu, 1 Apr 2010 06:14:20 -0600

================== Summary ==================

CSRF Vulnerability in OSSIM 2.2.1

Discovered by: CONIX Security (www.conix.fr)
Public Release Date: 4/01/2010
Vendor: Alienvault (www.alienvault.com)

============= Technical Details =============

The page /ossim/control_panel/alarm_console.php is vulnerable to a CSRF 
vulnerability. An attacker can send a malicious link to an authorized OSSIM 
user and, by social engineering, provoke the deletion of all the alarms:

/ossim/control_panel/alarm_console.php?delete_backlog=all


Nicolas Grandjean
IT Security Consultant
CONIX Security

Prev by Date: VUPEN Security Research - Apple Quicktime PICT Processing Integer Overflow Vulnerability
Next by Date: VUPEN Security Research - Sun Java JDK/JRE Unpack200 Buffer Overflow Vulnerability
Previous by thread: VUPEN Security Research - Apple Quicktime PICT Processing Integer Overflow Vulnerability
Next by thread: VUPEN Security Research - Sun Java JDK/JRE Unpack200 Buffer Overflow Vulnerability
Index(es):
- Date
- Thread