Revive Adserver SQL Injection Vulnerability (CVE-2013-7149) Advisory

Critical Vulnerability Information Advisory ID: REVIVE-SA-2013-001 CVE ID: CVE-2013-7149 Date: 2013-12-20 Security Risk: Critical Affected Applications and Versions Affected Applications: Revive Adserver Affected Versions: = 3.0.2 Vulnerability Description Vulnerability: SQL Injection Description: An SQL injection vulnerability has been discovered and reported to the Revive Adserver team. This vulnerability has been exploited to gain unauthorized access to the application via brute force mechanisms, but may also be exploited using other types of attacks. The risk is assessed as critical, as the most common end goal is to spread malware through websites and ad networks using the ad server. Additional Vulnerability: This vulnerability also exists in OpenX Source 2.8.11 and earlier versions, potentially dating back to phpAdsNew 2.0.x. Vulnerability Details Details: The XML-RPC call script failed to escape its input parameters in the same way as the passed method, allowing attackers to inject arbitrary SQL code by passing parameters. The escaping technique used in the call script for handling parameters has been upgraded from the addslashes PHP function to a database-specific escaping function. Solution Solution: Users are strongly advised to upgrade to the latest version 3.0.2, including those running OpenX Source or earlier versions of the application. Temporary Fix: If immediate upgrade is not possible, it is recommended to delete the “www/delivery/axmlrpc.php” script (if not in use) as a temporary mitigation until the upgrade is applied.

Goal Reached Thanks to every supporter — we hit 100%!

Revive Adserver SQL Injection Vulnerability (CVE-2013-7149) Advisory