Splunk Multiple Vulnerabilities Network Vulnerability

Summary

This host is running Splunk and is prone to multiple vulnerabilities.

Impact

Successful exploitation will allow attackers to obtain sensitive information and gain privileges. Impact Level: Application

Solution

Upgrade to Splunk version 4.1.5 or later, For updates refer to http://www.splunk.com/download

Insight

- XML parser is vulnerable to XXE (XML eXternal Entity) attacks, which allows remote authenticated users to obtain sensitive information and gain privileges. - SPLUNKD_SESSION_KEY parameter is vulnerable to session hijacking.

Affected

Splunk version 4.0.0 through 4.1.4

References

http://www.splunk.com/view/SP-CAAAFQ6

Updated on 2015-03-25

Severity

Classification

CVE CVE-2010-3322, CVE-2010-3323

CVSS	Base Score: 6.0 AV:N/AC:M/Au:S/C:P/I:P/A:P

Related Vulnerabilities

Apache Struts Directory Traversal Vulnerability
appRain CMF 'uploadify.php' Remote Arbitrary File Upload Vulnerability
Aker Secure Mail Gateway Cross-Site Scripting Vulnerability
Apache Subversion Module Metadata Accessible
Andromeda Streaming MP3 Server Cross Site Scripting Vulnerability

Splunk Multiple vulnerabilities

Take action and discover your vulnerabilities