Vulnerabilidad en el servidor web Web Services en SolarWinds Storage Resource Monitor (SRM) Profiler (anteriormente Storage Manager (STM)) (CVE-2016-4350)
Gravedad CVSS v3.1:
CRÍTICA
Tipo:
CWE-89
Neutralización incorrecta de elementos especiales usados en un comando SQL (Inyección SQL)
Fecha de publicación:
09/05/2016
Última modificación:
12/04/2025
Descripción
Múltiples vulnerabilidades de inyección SQL en el servidor web Web Services en SolarWinds Storage Resource Monitor (SRM) Profiler (anteriormente Storage Manager (STM)) en versiones anteriores a 6.2.3 permiten a atacantes remotos ejecutar comandos SQL arbitrarios a través de el parámetro (1) ScriptSchedule en el servlet ScriptServlet; (2) winEventId o (3) winEventLog en el servlet WindowsEventLogsServlet; (4) processOS en el servlet ProcessesServlet; (5) group, (6) groupName o (7) clientName en el servlet BackupExceptionsServlet; (8) valDB o (9) valFS en el servlet BackupAssociationServlet; (10) orderBy o (11) orderDir en el servlet HostStorageServlet; (12) fileName, (13) sortField o (14) sortDirection en el servlet DuplicateFilesServlet; (15) orderFld o (16) orderDir en el servlet QuantumMonitorServlet; (17) exitCode en el servlet NbuErrorMessageServlet; (18) udfName, (19) displayName, (20) udfDescription, (21) udfDataValue, (22) udfSectionName o (23) udfId en el servlet UserDefinedFieldConfigServlet; (24) sortField o (25) sortDirection en el servlet XiotechMonitorServlet; (26) sortField o (27) sortDirection en el servlet BexDriveUsageSummaryServlet; (28) state en el servlet ScriptServlet; (29) assignedNames en el servlet FileActionAssignmentServlet; (30) winEventSource en el servlet WindowsEventLogsServlet; o (31) name, (32) ipOne, (33) ipTwo o (34) ipThree en el servlet XiotechMonitorServlet.
Impacto
Puntuación base 3.x
9.80
Gravedad 3.x
CRÍTICA
Puntuación base 2.0
10.00
Gravedad 2.0
ALTA
Productos y versiones vulnerables
| CPE | Desde | Hasta |
|---|---|---|
| cpe:2.3:a:solarwinds:storage_resource_monitor:*:*:*:*:*:*:*:* | 6.2.1 (incluyendo) |
Para consultar la lista completa de nombres de CPE con productos y versiones, ver esta página
Referencias a soluciones, herramientas e información
- http://www.solarwinds.com/documentation/storage/storagemanager/docs/ReleaseNotes/releaseNotes.htm
- http://www.zerodayinitiative.com/advisories/ZDI-16-249
- http://www.zerodayinitiative.com/advisories/ZDI-16-250
- http://www.zerodayinitiative.com/advisories/ZDI-16-251
- http://www.zerodayinitiative.com/advisories/ZDI-16-252
- http://www.zerodayinitiative.com/advisories/ZDI-16-253
- http://www.zerodayinitiative.com/advisories/ZDI-16-254
- http://www.zerodayinitiative.com/advisories/ZDI-16-255
- http://www.zerodayinitiative.com/advisories/ZDI-16-256
- http://www.zerodayinitiative.com/advisories/ZDI-16-257
- http://www.zerodayinitiative.com/advisories/ZDI-16-258
- http://www.zerodayinitiative.com/advisories/ZDI-16-259
- http://www.zerodayinitiative.com/advisories/ZDI-16-260
- http://www.zerodayinitiative.com/advisories/ZDI-16-261
- http://www.zerodayinitiative.com/advisories/ZDI-16-262
- http://www.zerodayinitiative.com/advisories/ZDI-16-263
- http://www.zerodayinitiative.com/advisories/ZDI-16-264
- http://www.zerodayinitiative.com/advisories/ZDI-16-265
- http://www.zerodayinitiative.com/advisories/ZDI-16-266
- http://www.zerodayinitiative.com/advisories/ZDI-16-267
- http://www.zerodayinitiative.com/advisories/ZDI-16-268
- http://www.zerodayinitiative.com/advisories/ZDI-16-269
- http://www.zerodayinitiative.com/advisories/ZDI-16-270
- http://www.zerodayinitiative.com/advisories/ZDI-16-271
- http://www.zerodayinitiative.com/advisories/ZDI-16-272
- http://www.solarwinds.com/documentation/storage/storagemanager/docs/ReleaseNotes/releaseNotes.htm
- http://www.zerodayinitiative.com/advisories/ZDI-16-249
- http://www.zerodayinitiative.com/advisories/ZDI-16-250
- http://www.zerodayinitiative.com/advisories/ZDI-16-251
- http://www.zerodayinitiative.com/advisories/ZDI-16-252
- http://www.zerodayinitiative.com/advisories/ZDI-16-253
- http://www.zerodayinitiative.com/advisories/ZDI-16-254
- http://www.zerodayinitiative.com/advisories/ZDI-16-255
- http://www.zerodayinitiative.com/advisories/ZDI-16-256
- http://www.zerodayinitiative.com/advisories/ZDI-16-257
- http://www.zerodayinitiative.com/advisories/ZDI-16-258
- http://www.zerodayinitiative.com/advisories/ZDI-16-259
- http://www.zerodayinitiative.com/advisories/ZDI-16-260
- http://www.zerodayinitiative.com/advisories/ZDI-16-261
- http://www.zerodayinitiative.com/advisories/ZDI-16-262
- http://www.zerodayinitiative.com/advisories/ZDI-16-263
- http://www.zerodayinitiative.com/advisories/ZDI-16-264
- http://www.zerodayinitiative.com/advisories/ZDI-16-265
- http://www.zerodayinitiative.com/advisories/ZDI-16-266
- http://www.zerodayinitiative.com/advisories/ZDI-16-267
- http://www.zerodayinitiative.com/advisories/ZDI-16-268
- http://www.zerodayinitiative.com/advisories/ZDI-16-269
- http://www.zerodayinitiative.com/advisories/ZDI-16-270
- http://www.zerodayinitiative.com/advisories/ZDI-16-271
- http://www.zerodayinitiative.com/advisories/ZDI-16-272