CVE-2017-11474 : Exploit Details and Defense Strategies

Version 9.1.5.1 or earlier of GLPI contains a SQL Injection vulnerability that can be exploited through ajax/common.tabs.php.

Understanding CVE-2017-11474

GLPI before 9.1.5.1 has a SQL Injection vulnerability in the $crit variable in inc/computer_softwareversion.class.php, exploitable via ajax/common.tabs.php.

What is CVE-2017-11474?

This CVE refers to a SQL Injection vulnerability in GLPI versions 9.1.5.1 and earlier, specifically in the $crit variable in the file inc/computer_softwareversion.class.php, which can be exploited through ajax/common.tabs.php.

The Impact of CVE-2017-11474

Attackers can execute malicious SQL queries, potentially leading to data theft, modification, or deletion.
Unauthorized access to sensitive information within the affected system.

Technical Details of CVE-2017-11474

GLPI before version 9.1.5.1 is susceptible to SQL Injection attacks.

Vulnerability Description

The vulnerability exists in the $crit variable in the file inc/computer_softwareversion.class.php.

Affected Systems and Versions

GLPI versions 9.1.5.1 and earlier are affected.

Exploitation Mechanism

The vulnerability can be exploited through ajax/common.tabs.php.

Mitigation and Prevention

Immediate action is crucial to mitigate the risks associated with CVE-2017-11474.

Immediate Steps to Take

Update GLPI to version 9.1.5.1 or later to patch the SQL Injection vulnerability.
Monitor and restrict access to the vulnerable components.

Long-Term Security Practices

Regularly update software and apply security patches promptly.
Implement input validation and parameterized queries to prevent SQL Injection attacks.
Conduct security audits and penetration testing to identify and address vulnerabilities.

Patching and Updates

Ensure timely installation of updates and patches provided by GLPI to address the SQL Injection vulnerability.