{"vuid":"VU#753264","idnumber":"753264","name":"IPSwitch WhatsUp Gold does not validate commands when deserializing XML objects","keywords":["serialization","xml","sql"],"overview":"IPSwitch WhatsUp Gold version 16.3 does not properly validate data when deserializing XML objects sent over SOAP requests.","clean_desc":"CWE-502: Deserialization of Untrusted Data - CVE-2015-8261 WhatsUp Gold version 16.3 contains a SOAP request handler named DroneDeleteOldMeasurements. User-controlled data may be passed to the application within a serialized XML object via a SOAP request. This data is later directly included into an SQLite query without being sanitized or properly escaped, allowing an attacker to perform SQL Injection attacks.","impact":"An unauthenticated remote attacker may be able to execute SQL queries on the database.","resolution":"Apply an update IPSwitch has released WhatsUp Gold version 16.4, which addresses this issue. Affected users are encouraged to update as soon as possible.","workarounds":"","sysaffected":"","thanks":"Thanks to Matt Buzanowski for reporting this vulnerability.","author":"This document was written by Garret Wassermann.","public":[],"cveids":["CVE-2015-8261"],"certadvisory":"","uscerttechnicalalert":null,"datecreated":"2015-10-22T11:17:23Z","publicdate":"2015-12-19T00:00:00Z","datefirstpublished":"2016-01-07T16:36:11Z","dateupdated":"2016-01-07T16:36:11Z","revision":25,"vrda_d1_directreport":"1","vrda_d1_population":"1","vrda_d1_impact":"1","cam_widelyknown":"0","cam_exploitation":"0","cam_internetinfrastructure":"0","cam_population":"0","cam_impact":"0","cam_easeofexploitation":"0","cam_attackeraccessrequired":"0","cam_scorecurrent":"0","cam_scorecurrentwidelyknown":"0","cam_scorecurrentwidelyknownexploited":"0","ipprotocol":"","cvss_accessvector":"N","cvss_accesscomplexity":"L","cvss_authentication":null,"cvss_confidentialityimpact":"C","cvss_integrityimpact":"C","cvss_availabilityimpact":"C","cvss_exploitablity":null,"cvss_remediationlevel":"OF","cvss_reportconfidence":"C","cvss_collateraldamagepotential":"ND","cvss_targetdistribution":"M","cvss_securityrequirementscr":"ND","cvss_securityrequirementsir":"ND","cvss_securityrequirementsar":"ND","cvss_basescore":"10","cvss_basevector":"AV:N/AC:L/Au:N/C:C/I:C/A:C","cvss_temporalscore":"7.8","cvss_environmentalscore":"5.86926702432","cvss_environmentalvector":"CDP:ND/TD:M/CR:ND/IR:ND/AR:ND","metric":0.0,"vulnote":null}