Netcordia NetMRI应用登录错误网页未明向量跨站脚本攻击漏洞

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1183445 漏洞类型 跨站脚本
发布时间 2009-03-10 更新时间 2009-03-10
CVE编号 CVE-2009-0860 CNNVD-ID CNNVD-200903-195
漏洞平台 N/A CVSS评分 4.3
|漏洞来源
https://cxsecurity.com/issue/WLB-2009020040
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200903-195
|漏洞详情
NetMRI是Netcordia公司的网络管理解决方案,提供用于网络配置、性能、应用程序流和政策实时分析功能。NetMRI3.0.1版本及其早期版本的登陆应用程序的web用户界面中存在跨站脚本攻击漏洞。远程攻击者可以借助与错误页相关的未明向量,注入任意web脚本或HTML。
|漏洞EXP
 Title
-----
DDIVRT-2009-20 NetMRI Login Application Cross-site Scripting Vulnerability

Severity
--------
Low

Date Discovered
---------------
January 19th 2009

Discovered By
-------------
Digital Defense, Inc. Vulnerability Research Team
Credit: David Marshall and r_at_b13$

Vulnerability Description
-------------------------
NetMRI contains a cross-site scripting (XSS) issue whereby portions of the GET request are echoed back in an error page. This allows scripting tags to be executed by the browser to perform XSS attacks. Such an attack would require convincing a user to click on a specially crafted link.

Solution Description
--------------------
On February 18, 2009, Netcordia released a patch named "CrossScriptPatch.gpg" to address this vulnerability in all currently supported versions of NetMRI through v3.0.1.  Customers can acquire the patch through the normal mechanisms or contact Netcordia Technical Support (support_at_netcordia.com) for assistance.  Additionally, the necessary changes will be incorporated in future versions beginning with NetMRI v3.0.2.

Tested Systems / Software (with versions)
------------------------------------------
Red Hat Linux, NetMRI

Vendor Contact
--------------
Name: Netcordia
Website: http://www.netcordia.com/products/netmri-event-analysis.asp
Contact Information: http://www.netcordia.com/contact/index.asp
|参考资料

来源:BID
名称:33824
链接:http://www.securityfocus.com/bid/33824
来源:BUGTRAQ
名称:20090218DDIVRT-2009-20NetMRILoginApplicationCross-siteScriptingVulnerability
链接:http://www.securityfocus.com/archive/1/archive/1/501033/100/0/threaded
来源:SECUNIA
名称:33963
链接:http://secunia.com/advisories/33963
来源:connection.netcordia.com
链接:http://connection.netcordia.com/forums/t/731.aspx