CVE-2014-2655

SQL injection vulnerability in the gen_show_status function in functions.inc.php in Postfix Admin (aka postfixadmin) before 2.3.7 allows remote authenticated users to execute arbitrary SQL commands via a new alias.

CVSS v2.0 6.5 MEDIUM

6.5^/10

CVSS v2.0 : MEDIUM

Vector : AV:N/AC:L/Au:S/C:P/I:P/A:P

Exploitability : 8.0 / Impact : 6.4

Access Vector NETWORK

Access Complexity LOW

Authentication SINGLE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References

Link	Resource
http://lists.opensuse.org/opensuse-updates/2014-05/msg00075.html
http://sourceforge.net/p/postfixadmin/code/1650	Exploit Patch
http://www.debian.org/security/2014/dsa-2889
http://www.openwall.com/lists/oss-security/2014/03/26/11
http://www.openwall.com/lists/oss-security/2014/03/26/6
http://www.securityfocus.com/bid/66455

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:postfix_admin_project:postfix_admin::::::::
	cpe:2.3:a:postfix_admin_project:postfix_admin:2.2.1.1:::::::*
	cpe:2.3:a:postfix_admin_project:postfix_admin:2.3:::::::*
	cpe:2.3:a:postfix_admin_project:postfix_admin:2.3.1:::::::*
	cpe:2.3:a:postfix_admin_project:postfix_admin:2.3.2:::::::*
	cpe:2.3:a:postfix_admin_project:postfix_admin:2.3.3:::::::*
	cpe:2.3:a:postfix_admin_project:postfix_admin:2.3.4:::::::*
	cpe:2.3:a:postfix_admin_project:postfix_admin:2.3.5:::::::*

History

No history.

Information

Published : 2014-04-02 16:06

Updated : 2024-02-04 18:35

NVD link : CVE-2014-2655

Mitre link : CVE-2014-2655

CVE.ORG link : CVE-2014-2655

JSON object : View

Products Affected

postfix_admin_project

postfix_admin

CWE

CWE-89

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

{"id": "CVE-2014-2655", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 6.5, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:P", "authentication": "SINGLE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 8.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2014-04-02T16:06:02.253", "references": [{"url": "http://lists.opensuse.org/opensuse-updates/2014-05/msg00075.html", "source": "cve@mitre.org"}, {"url": "http://sourceforge.net/p/postfixadmin/code/1650", "tags": ["Exploit", "Patch"], "source": "cve@mitre.org"}, {"url": "http://www.debian.org/security/2014/dsa-2889", "source": "cve@mitre.org"}, {"url": "http://www.openwall.com/lists/oss-security/2014/03/26/11", "source": "cve@mitre.org"}, {"url": "http://www.openwall.com/lists/oss-security/2014/03/26/6", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/66455", "source": "cve@mitre.org"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-89"}]}], "descriptions": [{"lang": "en", "value": "SQL injection vulnerability in the gen_show_status function in functions.inc.php in Postfix Admin (aka postfixadmin) before 2.3.7 allows remote authenticated users to execute arbitrary SQL commands via a new alias."}, {"lang": "es", "value": "Vulnerabilidad de inyecci\u00f3n SQL en la funci\u00f3n gen_show_status en functions.inc.php en Postfix Admin (tambi\u00e9n conocido como postfixadmin) anterior a 2.3.7 permite a usuarios remotos autenticados ejecutar comandos SQL arbitrarios a trav\u00e9s de un alias nuevo."}], "lastModified": "2014-06-05T04:31:20.550", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:postfix_admin_project:postfix_admin:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FDFCDDE0-2E89-437E-9A85-ED607F9E5FCE", "versionEndIncluding": "2.3.6"}, {"criteria": "cpe:2.3:a:postfix_admin_project:postfix_admin:2.2.1.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5F07C816-6216-4008-8DD7-557393CD3A0B"}, {"criteria": "cpe:2.3:a:postfix_admin_project:postfix_admin:2.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E0B480AC-0A9C-4C90-B242-D8493A01E816"}, {"criteria": "cpe:2.3:a:postfix_admin_project:postfix_admin:2.3.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D0D94119-E897-4280-857E-4F97386D1955"}, {"criteria": "cpe:2.3:a:postfix_admin_project:postfix_admin:2.3.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0104EE93-5F4F-46A3-89A7-FDEC77AC0847"}, {"criteria": "cpe:2.3:a:postfix_admin_project:postfix_admin:2.3.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6E8132E0-1346-4017-8890-0BBBB1F3181D"}, {"criteria": "cpe:2.3:a:postfix_admin_project:postfix_admin:2.3.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A4F912CB-86E5-479A-8366-C41052CFA0AB"}, {"criteria": "cpe:2.3:a:postfix_admin_project:postfix_admin:2.3.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BCE42A10-5047-4B12-ADCF-F3A7E8E0A50A"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}