Sign-up

ID

VAR-201004-0451


CVE

CVE-2010-1609


TITLE

SAP NetWeaver Vulnerable to cross-site scripting

Trust: 0.8

sources: JVNDB: JVNDB-2010-005438

DESCRIPTION

Cross-site scripting (XSS) vulnerability in SAP NetWeaver 2004 before SP21 and 2004s before SP13 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. NetWeaver is prone to a cross-site scripting vulnerability. ---------------------------------------------------------------------- Secunia integrated with Microsoft WSUS http://secunia.com/blog/71/ ---------------------------------------------------------------------- TITLE: SAP NetWeaver WebDynpro Runtime Cross-Site Scripting Vulnerability SECUNIA ADVISORY ID: SA38629 VERIFY ADVISORY: http://secunia.com/advisories/38629/ DESCRIPTION: Mariano Nu\xf1ez Di Croce has reported a vulnerability in SAP NetWeaver, which can be exploited by malicious people to conduct cross-site scripting attacks. Certain unspecified input passed to the WebDynpro Runtime is not properly sanitised before being returned to the user. This can be exploited to execute arbitrary HTML and script code in a user's browser session in context of an affected site. The vulnerability is reported in SAP NetWeaver 2004 prior to SP21 and SAP NetWeaver 2004s prior to SP13. SOLUTION: Patches are available via SAP Note 1424863. https://service.sap.com/sap/support/notes/1424863 PROVIDED AND/OR DISCOVERED BY: Mariano Nu\xf1ez Di Croce, Onapsis ORIGINAL ADVISORY: Onapsis: http://archives.neohapsis.com/archives/fulldisclosure/2010-02/0216.html SAP Note 1424863: https://service.sap.com/sap/support/notes/1424863 ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org ----------------------------------------------------------------------

Trust: 1.98

sources: NVD: CVE-2010-1609 // JVNDB: JVNDB-2010-005438 // BID: 73745 // PACKETSTORM: 86389

AFFECTED PRODUCTS

vendor:sapmodel:netweaverscope:eqversion:7.0

Trust: 1.9

vendor:sapmodel:netweaverscope:eqversion:4.0

Trust: 1.9

vendor:sapmodel:netweaverscope:ltversion:sp21

Trust: 0.8

sources: BID: 73745 // JVNDB: JVNDB-2010-005438 // CNNVD: CNNVD-201004-498 // NVD: CVE-2010-1609

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2010-1609
value: MEDIUM

Trust: 1.0

NVD: CVE-2010-1609
value: MEDIUM

Trust: 0.8

CNNVD: CNNVD-201004-498
value: MEDIUM

Trust: 0.6

nvd@nist.gov: CVE-2010-1609
severity: MEDIUM
baseScore: 4.3
vectorString: AV:N/AC:M/AU:N/C:N/I:P/A:N
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: NONE
integrityImpact: PARTIAL
availabilityImpact: NONE
exploitabilityScore: 8.6
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

sources: JVNDB: JVNDB-2010-005438 // CNNVD: CNNVD-201004-498 // NVD: CVE-2010-1609

PROBLEMTYPE DATA

problemtype:CWE-79

Trust: 1.8

sources: JVNDB: JVNDB-2010-005438 // NVD: CVE-2010-1609

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201004-498

TYPE

xss

Trust: 0.7

sources: PACKETSTORM: 86389 // CNNVD: CNNVD-201004-498

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2010-005438

PATCH
title:NetWeaverurl:http://scn.sap.com/community/netweaver
Trust: 0.8
sources:
            
            
            JVNDB: JVNDB-2010-005438

EXTERNAL IDS
db:NVDid:CVE-2010-1609
Trust: 2.7
db:SECUNIAid:38629
Trust: 1.7
db:VUPENid:ADV-2010-0397
Trust: 1.6
db:JVNDBid:JVNDB-2010-005438
Trust: 0.8
db:FULLDISCid:20100211 [ONAPSIS SECURITY ADVISORY 2010-003] SAP WEBDYNPRO RUNTIME XSS/CSS INJECTION
Trust: 0.6
db:BUGTRAQid:20100211 [ONAPSIS SECURITY ADVISORY 2010-003] SAP WEBDYNPRO RUNTIME XSS/CSS INJECTION
Trust: 0.6
db:CNNVDid:CNNVD-201004-498
Trust: 0.6
db:BIDid:73745
Trust: 0.3
db:PACKETSTORMid:86389
Trust: 0.1
sources:
            
            
            BID: 73745 // 
            
            
            
            JVNDB: JVNDB-2010-005438 // 
            
            
            
            PACKETSTORM: 86389 // 
            
            
            
            CNNVD: CNNVD-201004-498 // 
            
            
            
            NVD: CVE-2010-1609

REFERENCES
url:http://archives.neohapsis.com/archives/fulldisclosure/2010-02/0216.html
Trust: 2.0
url:http://www.vupen.com/english/advisories/2010/0397
Trust: 1.6
url:http://secunia.com/advisories/38629
Trust: 1.6
url:http://www.securityfocus.com/archive/1/509499/100/0/threaded
Trust: 1.0
url:http://www.securityfocus.com/archive/1/archive/1/509499/100/0/threaded
Trust: 0.9
url:http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2010-1609
Trust: 0.8
url:http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2010-1609
Trust: 0.8
url:http://secunia.com/advisories/secunia_security_advisories/
Trust: 0.1
url:http://secunia.com/blog/71/
Trust: 0.1
url:http://secunia.com/advisories/38629/
Trust: 0.1
url:https://service.sap.com/sap/support/notes/1424863
Trust: 0.1
url:http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org
Trust: 0.1
url:http://secunia.com/advisories/about_secunia_advisories/
Trust: 0.1
sources:
            
            
            BID: 73745 // 
            
            
            
            JVNDB: JVNDB-2010-005438 // 
            
            
            
            PACKETSTORM: 86389 // 
            
            
            
            CNNVD: CNNVD-201004-498 // 
            
            
            
            NVD: CVE-2010-1609

CREDITS
Unknown
Trust: 0.3
sources:
            
            
            BID: 73745

SOURCES
db:BIDid:73745
db:JVNDBid:JVNDB-2010-005438
db:PACKETSTORMid:86389
db:CNNVDid:CNNVD-201004-498
db:NVDid:CVE-2010-1609

LAST UPDATE DATE
2024-11-23T22:31:48.177000+00:00

SOURCES UPDATE DATE
db:BIDid:73745date:2010-04-29T00:00:00
db:JVNDBid:JVNDB-2010-005438date:2012-12-20T00:00:00
db:CNNVDid:CNNVD-201004-498date:2010-04-30T00:00:00
db:NVDid:CVE-2010-1609date:2024-11-21T01:14:47.847

SOURCES RELEASE DATE
db:BIDid:73745date:2010-04-29T00:00:00
db:JVNDBid:JVNDB-2010-005438date:2012-12-20T00:00:00
db:PACKETSTORMid:86389date:2010-02-16T17:07:07
db:CNNVDid:CNNVD-201004-498date:2010-04-29T00:00:00
db:NVDid:CVE-2010-1609date:2010-04-29T17:30:00.870