CVE-2009-2344

Name of the Vulnerable Software and Affected Versions Sourcefire Defense Center (DC) and 3D Sensor versions prior to 4.8.2

Description The issue allows remote authenticated users to gain privileges. This is achieved by setting the admin parameter to a specific $admin value in an edit action to the /admin/user/user.cgi API endpoint and possibly other components.

Recommendations For versions prior to 4.8.2, update to version 4.8.2 or later to resolve the issue. As a temporary workaround, consider restricting access to the /admin/user/user.cgi API endpoint and other potentially vulnerable components to minimize the risk of exploitation. Avoid using the admin parameter in the affected API endpoints until the issue is resolved.