IBM BladeCenter AMM模块跨站脚本漏洞

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1166681 漏洞类型 跨站脚本
发布时间 2013-08-12 更新时间 2013-08-12
CVE编号 CVE-2013-4007 CNNVD-ID CNNVD-201308-228
漏洞平台 N/A CVSS评分 3.5
|漏洞来源
https://www.securityfocus.com/bid/61749
https://cxsecurity.com/issue/WLB-2013080103
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-201308-228
|漏洞详情
IBMBladeCenter是美国IBM公司的系列高性能刀片服务器。IBMBladeCenter系统使用BBET64C及之前的版本和BPET64C及之前版本固件的的AdvancedManagementModule(AMM)模块中的adv_sw.php页面中存在跨站脚本漏洞。远程攻击者可利用该漏洞注入任意Web脚本或HTML。
|漏洞EXP
Title:
======
IBM Advanced Management Module Cross-Site Scripting (XSS)

CVE-ID:
=======
CVE-2013-4007

Timeline:
=========
2013-06-10 Vulnerability discovered
2013-06-10 Reported to IBM Product Security Incident Response Team
2013-06-11 Vendor responded
2013-08-12 Official advisory and fix from IBM
2013-08-12 Public disclosure

Introduction:
=============
Cross-Site Scripting (XSS) vulnerability is found in adv_sw.php page of
IBM Advanced Management Module.

Status:
=======
Published

Affected Products:
==================
IBM Advanced Management Module with firmware BPET64B (3.64B)

Vendor Advisory:
================
http://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5093491

Details:
========
A remote attacker could exploit this vulnerability to execute a script
in a victim's web browser within the security context of the hosting web
site, once the URL is clicked. An attacker could use this vulnerability
to steal the victim's cookie-based authentication credentials. This
attack does require that the user clicking the vulnerable link be
authenticated with a valid user ID and password.

Proof of Concept:
=================
http://ibm-amm-ip/private/adv_sw.php?WEBINDEX=<XSS>

Fix:
====
The vulnerability is fixed in firmware v3.64G [BPET64G]
Update Portal: http://www-933.ibm.com/support/fixcentral/

Author:
=======
Jens Regel <jens[at]loxiran[dot]de>
-- 
Jabber: loxiran@jabber.ccc.de
ICQ: 19090972
Mail: jens@loxiran.de
|受影响的产品
IBM BladeCenter Advanced Management Module 3.64B build BPET64B IBM BladeCenter Advanced Management Module 3.54P Build BPET54P IBM BladeCenter Advanced Management Module 1.42U build BPET42U IBM BladeCenter
|参考资料

来源:XF
名称:advancedmm-cve20134007-xss(85274)
链接:http://xforce.iss.net/xforce/xfdb/85274
来源:www.ibm.com
链接:http://www.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5093491
来源:BID
名称:61749
链接:http://www.securityfocus.com/bid/61749