We discovered two critical vulnerabilities in OSSIM (versions prior to 5.0.1) that may be abused to take control of an OSSIM system and escalate privileges from an unprivileged local user access. A vulnerability affecting the asset discovery scanner allowed any authenticated user to execute arbitrary commands remotely (CVE-2015-4046). It was then possible to escalate privileges thanks to a specifically crafted Nmap script, and gain root access on the machine (CVE-2015-4045). Both were responsibly disclosed

AlienVault fixed these vulnerabilities in the last release of OSSIM (version 5.0.1), among other security issues (https://www.alienvault.com/forums/discussion/5126/).

Our original advisory (PDF)