Detections
Analytics
Observium PHP Object Unserialization Remote File Writing Vulnerability
critical Nessus Plugin ID 95391
Language:
Synopsis
The remote Observium server is affected by a remote file writing vulnerability.Description
The remote Observium server is affected by a remote file writing vulnerability in the var_decode() function in common.inc.php due to improper validation of user-supplied GET, POST and COOKIE values before use in the PHP unserialize() function. An unauthenticated, remote attacker can exploit this to write data to arbitrary files, including a PHP session file that allows the attacker to gain administrative privileges.Note that Observium is reportedly affected by additional vulnerabilities; however, Nessus has not tested for these.
Solution
Upgrade to an Observium version released on or after 2016/10/26.See Also
https://www.computest.nl/advisories/CT-2016-1110_Observium.txt
Plugin Details
Severity: Critical
ID: 95391
File Name: observium_unserialize.nasl
Version: 1.7
Type: remote
Family: CGI abuses
Published: 11/29/2016
Updated: 11/15/2018
Supported Sensors: Nessus
Vulnerability Information
CPE: x-cpe:/a:observium_limited:observium
Required KB Items: installed_sw/Observium
Exploited by Nessus: true
Patch Publication Date: 10/26/2016
Vulnerability Publication Date: 11/10/2016