Details of VAR-200903-0567

ID

VAR-200903-0567

TITLE

SAP MaxDB webdbm Cross-Site Scripting Vulnerability

Trust: 0.8

sources: IVD: e7841a22-1fcd-11e6-abef-000c29c66e3d // CNVD: CNVD-2009-1930

DESCRIPTION

MaxDB is a database management system widely used in SAP applications. The webdbm script used by MaxDB does not properly validate the parameters passed to the Server, Database, and User parameters. A remote attacker can perform a cross-site scripting attack by executing parameters, resulting in theft of an administrator cookie or a fake login page when the user attempts to log in. Send the password to the attacker. SAP MaxDB is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may allow the attacker to steal cookie-based authentication credentials and to launch other attacks

Trust: 0.99

sources: CNVD: CNVD-2009-1930 // BID: 34319 // IVD: e7841a22-1fcd-11e6-abef-000c29c66e3d

IOT TAXONOMY

category:

['ICS']

sub_category:

Trust: 0.8

sources: IVD: e7841a22-1fcd-11e6-abef-000c29c66e3d // CNVD: CNVD-2009-1930

AFFECTED PRODUCTS

vendor:	sap	model:	maxdb	scope:	eq	version:	7.8.01.18	Trust: 0.8
vendor:	sap	model:	maxdb build	scope:	eq	version:	7.6.3007	Trust: 0.3
vendor:	sap	model:	maxdb	scope:	eq	version:	7.6.03.15	Trust: 0.3
vendor:	sap	model:	maxdb	scope:	eq	version:	7.6.00.37	Trust: 0.3
vendor:	sap	model:	maxdb	scope:	eq	version:	7.6.0.37	Trust: 0.3
vendor:	sap	model:	maxdb	scope:	eq	version:	7.4.3.32	Trust: 0.3

sources: IVD: e7841a22-1fcd-11e6-abef-000c29c66e3d // CNVD: CNVD-2009-1930 // BID: 34319

CVSS

SEVERITY

CVSSV2

CVSSV3

CNVD:	CNVD-2009-1930
value:	MEDIUM
Trust: 0.6
IVD:	e7841a22-1fcd-11e6-abef-000c29c66e3d
value:	LOW
Trust: 0.2

CNVD:	CNVD-2009-1930
severity:	MEDIUM
baseScore:	4.0
vectorString:	AV:N/AC:L/AU:S/C:P/I:N/A:N
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	SINGLE
confidentialityImpact:	PARTIAL
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	8.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6
IVD:	e7841a22-1fcd-11e6-abef-000c29c66e3d
severity:	MEDIUM
baseScore:	4.0
vectorString:	AV:N/AC:L/AU:S/C:P/I:N/A:N
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	SINGLE
confidentialityImpact:	PARTIAL
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	8.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.9 [IVD]
Trust: 0.2

sources: IVD: e7841a22-1fcd-11e6-abef-000c29c66e3d // CNVD: CNVD-2009-1930

THREAT TYPE

network

Trust: 0.3

sources: BID: 34319

TYPE

Input Validation Error

Trust: 0.3

sources: BID: 34319

EXTERNAL IDS

db:	BID	id:	34319	Trust: 0.9
db:	CNVD	id:	CNVD-2009-1930	Trust: 0.8
db:	IVD	id:	E7841A22-1FCD-11E6-ABEF-000C29C66E3D	Trust: 0.2

sources: IVD: e7841a22-1fcd-11e6-abef-000c29c66e3d // CNVD: CNVD-2009-1930 // BID: 34319

REFERENCES

url:	http://marc.info/?l=bugtraq&m=123852432711709&w=2	Trust: 0.6
url:	https://www.sdn.sap.com/irj/sdn/maxdb	Trust: 0.3
url:	/archive/1/502318	Trust: 0.3

sources: CNVD: CNVD-2009-1930 // BID: 34319

CREDITS

Digital Security Research Group [DSecRG]

Trust: 0.3

sources: BID: 34319

SOURCES

db:	IVD	id:	e7841a22-1fcd-11e6-abef-000c29c66e3d
db:	CNVD	id:	CNVD-2009-1930
db:	BID	id:	34319

LAST UPDATE DATE

2022-05-17T01:43:47.382000+00:00

SOURCES UPDATE DATE

db:	CNVD	id:	CNVD-2009-1930	date:	2009-03-31T00:00:00
db:	BID	id:	34319	date:	2009-03-31T21:16:00

SOURCES RELEASE DATE

db:	IVD	id:	e7841a22-1fcd-11e6-abef-000c29c66e3d	date:	2009-03-31T00:00:00
db:	CNVD	id:	CNVD-2009-1930	date:	2009-03-31T00:00:00
db:	BID	id:	34319	date:	2009-03-31T00:00:00