CA Service Desk Web表单多个跨站脚本漏洞

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1185124 漏洞类型 跨站脚本
发布时间 2008-09-25 更新时间 2008-09-26
CVE编号 CVE-2008-4119 CNNVD-ID CNNVD-200809-383
漏洞平台 N/A CVSS评分 4.3
|漏洞来源
https://www.securityfocus.com/bid/31412
https://cxsecurity.com/issue/WLB-2008090065
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200809-383
|漏洞详情
CAServiceDesk是企业级的服务台解决方案。CAServiceDesk没有安全的处理多个web表单所传送的变量,如果用户受骗跟随了恶意链接的话就可能导致跨站脚本攻击。
|漏洞EXP
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Title: CA Service Desk Multiple Cross-Site Scripting 
Vulnerabilities


CA Advisory Date: 2008-09-24


Reported By:
Open Security Foundation


Impact: A remote attacker can conduct cross-site scripting attacks.


Summary: CA Service Desk contains multiple vulnerabilities that 
can allow a remote attacker to conduct cross-site scripting 
attacks. CA has issued patches to address the vulnerabilities. The 
vulnerabilities, CVE-2008-4119, are due to insecure handling of 
passed variables in multiple web forms. An attacker, who can 
convince a user to click on a specially crafted link, can 
potentially conduct cross-site scripting attacks.


Mitigating Factors: None


Severity: CA has given these vulnerabilities a Low risk rating.


Affected Products:
CA Service Desk r11.2
CA CMDB 11.0
CA CMDB 11.1
CA CMDB 11.2


Affected Platforms:
Microsoft Windows 2003 R2
Microsoft Windows 2003 SP1
Microsoft Windows 2003 SP2
Microsoft Windows 2000 Server Family with SP4 applied (32 bit only)
Red Hat Enterprise Linux 3.0 x86
Red Hat Enterprise Linux 4.0 x86
SUSE Linux Enterprise Server 9 (SLES) x86
SUSE Linux Enterprise Server 10 SP1 (SLES) x86
Sun Solaris 9 SPARC (64 bit only)
Sun Solaris 10 SPARC (64 bit only)
HP/UX 11.11 PA-RISC (64 bit only)
HP/UX 11.23 PA-RISC (64 bit only)
HP/UX 11.31 PA-RISC (64 bit only)
AIX 5.2 (64 bit only)
AIX 5.3 (64 bit only)


Status and Recommendation:
CA CMDB 11.0 and CA CMDB 11.1 users should upgrade to CA CMDB 
11.2, which includes all of the fixes.

CA has issued the following cumulative fixes for CA Service Desk 
r11.2 to address the vulnerabilities.

Note: If you are using a version of CA Service Desk earlier than 
r11.2, you will first need to upgrade to r11.2.  For users of 
earlier versions, CA recommends upgrading to r11.2.

Windows:
CA Service Desk Crystal Report component:
QO99896
CA Service Desk Dashboard component:
QO99895
CA Service Desk Web Screen Painter component:
QO99894
CA Service Desk Web Server component:
QO99893
CA Service Desk Server component:
QO99892

AIX:
CA Service Desk Web Screen Painter component:
QO99905
CA Service Desk Web Server component:
QO99901
CA Service Desk Server component:
QO99897

HPUX:
CA Service Desk Web Screen Painter component:
QO99906
CA Service Desk Web Server component:
QO99902
CA Service Desk Server component:
QO99898

Linux:
CA Service Desk Web Screen Painter component:
QO99907
CA Service Desk Web Server component:
QO99903
CA Service Desk Server component:
QO99899

Solaris:
CA Service Desk Web Screen Painter component:
QO99908
CA Service Desk Web Server component:
QO99904
CA Service Desk Server component:
QO99900


How to determine if you are affected:
Check the Applyptf log to determine if the fix has been applied. 
Additional information, including platform-specific instructions 
and updated routine details, can be found in the appropriate 
solution document.


Workaround: None


References (URLs may wrap):
CA Support:
http://support.ca.com/
Security Notice for CA Service Desk
https://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=186585
Solution Document Reference APARs:
QO99896, QO99895, QO99894, QO99893, QO99892, QO99905, QO99901, 
QO99897, QO99906, QO99902, QO99898, QO99907, QO99903, QO99899,
QO99908, QO99904, QO99900
CA Security Response Blog posting:
CA Service Desk Multiple Cross-Site Scripting Vulnerabilities
community.ca.com/blogs/casecurityresponseblog/archive/2008/09/25.aspx
Reported By: 
Open Security Foundation
http://opensecurityfoundation.org/
CVE References:
CVE-2008-4119 ?? CA Service Desk multiple cross-site scripting 
   issues
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4119
OSVDB References: Pending
http://osvdb.org/


Changelog for this advisory:
v1.0 - Initial Release
v1.1 - Added CA CMDB solutions


Customers who require additional information should contact CA
Technical Support at http://support.ca.com.

For technical questions or comments related to this advisory, 
please send email to vuln AT ca DOT com.

If you discover a vulnerability in CA products, please report your 
findings to our product security response team.
https://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=177782


Regards,
Ken Williams ; 0xE2941985
Director, CA Vulnerability Research


CA, 1 CA Plaza, Islandia, NY 11749
        
Contact http://www.ca.com/us/contact/
Legal Notice http://www.ca.com/us/legal/
Privacy Policy http://www.ca.com/us/privacy/
Copyright (c) 2008 CA. All rights reserved.

-----BEGIN PGP SIGNATURE-----
Version: PGP Desktop 9.5.3 (Build 5003)

wj8DBQFI3ETJeSWR3+KUGYURAhw2AKCJZ//oaNtg2G1iSCb9RxQ7Ln2/egCffJjf
eQ9MojoxSfbn/JogNrCV9FM=
=EocE
-----END PGP SIGNATURE-----
|受影响的产品
Computer Associates Service Desk r11.2 Computer Associates CMDB 11.2 Computer Associates CMDB 11.1 Computer Associates CMDB 11.0
|参考资料

来源:support.ca.com
链接:https://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=186585
来源:XF
名称:ca-servicedesk-webforms-xss(45416)
链接:http://xforce.iss.net/xforce/xfdb/45416
来源:BID
名称:31412
链接:http://www.securityfocus.com/bid/31412
来源:BUGTRAQ
名称:20080926CAServiceDeskMultipleCross-SiteScriptingVulnerabilities
链接:http://www.securityfocus.com/archive/1/archive/1/496755/100/0/threaded
来源:VUPEN
名称:ADV-2008-2673
链接:http://www.frsirt.com/english/advisories/2008/2673
来源:SREASON
名称:4318
链接:http://securityreason.com/securityalert/4318
来源:SECUNIA
名称:32038
链接:http://secunia.com/advisories/32038
来源:community.ca.com
链接:http://community.ca.com/blogs/casecurityresponseblog/archive/2008/09/25.aspx