Details of VAR-200802-0048

ID

VAR-200802-0048

CVE

CVE-2008-0539

TITLE

F5 BIG-IP Web Management Interface Console HTML Injection Vulnerability

Trust: 0.9

sources: CNVD: CNVD-2008-1236 // BID: 28151

DESCRIPTION

Cross-site scripting (XSS) vulnerability in dms/policy/rep_request.php in F5 BIG-IP Application Security Manager (ASM) 9.4.3 allows remote attackers to inject arbitrary web script or HTML via the report_type parameter. F5 BIG-IP is an all-in-one network device that integrates network traffic management, application security manager, and load balancing. The output of the executed console command is encapsulated in <t_extarea>, so the displayed content has not been changed, but the text block injected with the </t_extarea> tag for abnormal termination is not protected. An attacker can create a log entry with embedded scripts. If the administrator views the relevant log files in the console, a malicious script is executed. This vulnerability can be exploited remotely because a URL link that generates malicious log entries can be created with a simple HTTP GET request. This may help the attacker steal cookie-based authentication credentials and launch other attacks. ---------------------------------------------------------------------- A new version (0.9.0.0 - Release Candidate 1) of the free Secunia PSI has been released. The new version includes many new and advanced features, which makes it even easier to stay patched. Input passed to the "report_type" parameter in "dms/policy/rep_request.php" is not properly sanitised before being returned to the user. The vulnerability is reported in version 9.4.3. SOLUTION: Filter malicious characters and character sequences using a web proxy. Do not browse untrusted websites or follow untrusted links while logged on to the management interface. PROVIDED AND/OR DISCOVERED BY: nnposter ORIGINAL ADVISORY: http://seclists.org/bugtraq/2008/Jan/0380.html ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org ----------------------------------------------------------------------

Trust: 2.88

sources: NVD: CVE-2008-0539 // JVNDB: JVNDB-2008-002674 // CNVD: CNVD-2008-1236 // BID: 28151 // BID: 27462 // VULHUB: VHN-30664 // PACKETSTORM: 63041

IOT TAXONOMY

category:

['Network device']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2008-1236

AFFECTED PRODUCTS

vendor:	f5	model:	big-ip	scope:	eq	version:	9.4.3	Trust: 1.4
vendor:	f5	model:	big-ip application security manager	scope:	gte	version:	9.4.0	Trust: 1.0
vendor:	f5	model:	big-ip application security manager	scope:	lt	version:	9.2.5	Trust: 1.0
vendor:	f5	model:	big-ip application security manager	scope:	lt	version:	9.4.4	Trust: 1.0
vendor:	f5	model:	big-ip application security manager	scope:	gte	version:	9.2.0	Trust: 1.0
vendor:	f5	model:	big-ip application security manager	scope:	eq	version:	9.3.0	Trust: 1.0
vendor:	no	model:	-	scope:	-	version:	-	Trust: 0.6
vendor:	f5	model:	big-ip application security manager	scope:	eq	version:	9.4.3	Trust: 0.6
vendor:	f5	model:	tmos	scope:	eq	version:	9.4.3	Trust: 0.6

sources: CNVD: CNVD-2008-1236 // BID: 28151 // BID: 27462 // JVNDB: JVNDB-2008-002674 // CNNVD: CNNVD-200802-006 // NVD: CVE-2008-0539

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2008-0539
value:	MEDIUM
Trust: 1.0
NVD:	CVE-2008-0539
value:	MEDIUM
Trust: 0.8
CNVD:	CNVD-2008-1236
value:	MEDIUM
Trust: 0.6
CNNVD:	CNNVD-200802-006
value:	MEDIUM
Trust: 0.6
VULHUB:	VHN-30664
value:	MEDIUM
Trust: 0.1

nvd@nist.gov:	CVE-2008-0539
severity:	MEDIUM
baseScore:	4.3
vectorString:	AV:N/AC:M/AU:N/C:N/I:P/A:N
accessVector:	NETWORK
accessComplexity:	MEDIUM
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	PARTIAL
availabilityImpact:	NONE
exploitabilityScore:	8.6
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.8
CNVD:	CNVD-2008-1236
severity:	MEDIUM
baseScore:	4.3
vectorString:	AV:N/AC:M/AU:N/C:P/I:N/A:N
accessVector:	NETWORK
accessComplexity:	MEDIUM
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	8.6
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6
VULHUB:	VHN-30664
severity:	MEDIUM
baseScore:	4.3
vectorString:	AV:N/AC:M/AU:N/C:N/I:P/A:N
accessVector:	NETWORK
accessComplexity:	MEDIUM
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	PARTIAL
availabilityImpact:	NONE
exploitabilityScore:	8.6
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

sources: CNVD: CNVD-2008-1236 // VULHUB: VHN-30664 // JVNDB: JVNDB-2008-002674 // CNNVD: CNNVD-200802-006 // NVD: CVE-2008-0539

PROBLEMTYPE DATA

problemtype:

CWE-79

Trust: 1.9

sources: VULHUB: VHN-30664 // JVNDB: JVNDB-2008-002674 // NVD: CVE-2008-0539

THREAT TYPE

network

Trust: 0.6

sources: BID: 28151 // BID: 27462

TYPE

xss

Trust: 0.7

sources: PACKETSTORM: 63041 // CNNVD: CNNVD-200802-006

CONFIGURATIONS

sources: JVNDB: JVNDB-2008-002674

EXPLOIT AVAILABILITY

sources: VULHUB: VHN-30664

PATCH

title:

Top Page

url:

http://www.f5.com/products/big-ip/

Trust: 0.8

sources: JVNDB: JVNDB-2008-002674

EXTERNAL IDS

db:	NVD	id:	CVE-2008-0539	Trust: 3.1
db:	BID	id:	28151	Trust: 2.6
db:	BID	id:	27462	Trust: 2.0
db:	SECUNIA	id:	28655	Trust: 1.8
db:	SREASON	id:	3602	Trust: 1.7
db:	SECTRACK	id:	1019276	Trust: 1.7
db:	VUPEN	id:	ADV-2008-0301	Trust: 1.7
db:	JVNDB	id:	JVNDB-2008-002674	Trust: 0.8
db:	CNNVD	id:	CNNVD-200802-006	Trust: 0.7
db:	CNVD	id:	CNVD-2008-1236	Trust: 0.6
db:	EXPLOIT-DB	id:	31065	Trust: 0.1
db:	VULHUB	id:	VHN-30664	Trust: 0.1
db:	PACKETSTORM	id:	63041	Trust: 0.1

sources: CNVD: CNVD-2008-1236 // VULHUB: VHN-30664 // BID: 28151 // BID: 27462 // JVNDB: JVNDB-2008-002674 // PACKETSTORM: 63041 // CNNVD: CNNVD-200802-006 // NVD: CVE-2008-0539

REFERENCES

url:	http://www.securityfocus.com/bid/28151	Trust: 2.3
url:	http://www.securityfocus.com/bid/27462	Trust: 1.7
url:	http://www.securityfocus.com/archive/1/487118/100/0/threaded	Trust: 1.7
url:	http://www.securityfocus.com/archive/1/489290/100/0/threaded	Trust: 1.7
url:	http://www.securitytracker.com/id?1019276	Trust: 1.7
url:	http://secunia.com/advisories/28655	Trust: 1.7
url:	http://securityreason.com/securityalert/3602	Trust: 1.7
url:	http://www.vupen.com/english/advisories/2008/0301	Trust: 1.7
url:	https://exchange.xforce.ibmcloud.com/vulnerabilities/39979	Trust: 1.7
url:	http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2008-0539	Trust: 0.8
url:	http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2008-0539	Trust: 0.8
url:	http://www.f5.com/f5products/bigip/	Trust: 0.3
url:	/archive/1/489290	Trust: 0.3
url:	http://www.f5.com/products/big-ip/product-modules/application-security-manager.html	Trust: 0.3
url:	/archive/1/487118	Trust: 0.3
url:	http://seclists.org/bugtraq/2008/jan/0380.html	Trust: 0.1
url:	http://secunia.com/secunia_security_advisories/	Trust: 0.1
url:	http://secunia.com/about_secunia_advisories/	Trust: 0.1
url:	https://psi.secunia.com/?page=changelog	Trust: 0.1
url:	https://psi.secunia.com/	Trust: 0.1
url:	http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org	Trust: 0.1
url:	http://secunia.com/advisories/28655/	Trust: 0.1
url:	http://secunia.com/product/17352/	Trust: 0.1

CREDITS

nnposter is credited with discovering this vulnerability.

Trust: 1.2

sources: BID: 28151 // BID: 27462 // CNNVD: CNNVD-200802-006

SOURCES

db:	CNVD	id:	CNVD-2008-1236
db:	VULHUB	id:	VHN-30664
db:	BID	id:	28151
db:	BID	id:	27462
db:	JVNDB	id:	JVNDB-2008-002674
db:	PACKETSTORM	id:	63041
db:	CNNVD	id:	CNNVD-200802-006
db:	NVD	id:	CVE-2008-0539

LAST UPDATE DATE

2024-11-23T22:24:04.697000+00:00

SOURCES UPDATE DATE

db:	CNVD	id:	CNVD-2008-1236	date:	2014-01-27T00:00:00
db:	VULHUB	id:	VHN-30664	date:	2023-03-03T00:00:00
db:	BID	id:	28151	date:	2015-05-07T17:32:00
db:	BID	id:	27462	date:	2015-05-07T17:33:00
db:	JVNDB	id:	JVNDB-2008-002674	date:	2012-06-26T00:00:00
db:	CNNVD	id:	CNNVD-200802-006	date:	2023-03-06T00:00:00
db:	NVD	id:	CVE-2008-0539	date:	2024-11-21T00:42:20.253

SOURCES RELEASE DATE

db:	CNVD	id:	CNVD-2008-1236	date:	2008-03-08T00:00:00
db:	VULHUB	id:	VHN-30664	date:	2008-02-01T00:00:00
db:	BID	id:	28151	date:	2008-03-08T00:00:00
db:	BID	id:	27462	date:	2008-01-26T00:00:00
db:	JVNDB	id:	JVNDB-2008-002674	date:	2012-06-26T00:00:00
db:	PACKETSTORM	id:	63041	date:	2008-01-28T17:47:56
db:	CNNVD	id:	CNNVD-200802-006	date:	2008-02-01T00:00:00
db:	NVD	id:	CVE-2008-0539	date:	2008-02-01T20:00:00