Details of VAR-201303-0388

ID

VAR-201303-0388

CVE

CVE-2013-1140

TITLE

Cisco Security Monitoring, Analysis and Response System Vulnerable to reading arbitrary files

Trust: 0.8

sources: JVNDB: JVNDB-2013-001758

DESCRIPTION

The XML parser in Cisco Security Monitoring, Analysis, and Response System (MARS) allows remote attackers to read arbitrary files via an external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue, aka Bug ID CSCue55093. An attacker can exploit this issue to gain access to sensitive information; this may lead to further attacks. This issue being tracked by Cisco Bug ID CSCue55093. Related to XML External Entity (XXE) issues

Trust: 2.34

sources: NVD: CVE-2013-1140 // JVNDB: JVNDB-2013-001758 // BID: 58809 // BID: 78028 // VULHUB: VHN-61142 // VULMON: CVE-2013-1140

AFFECTED PRODUCTS

vendor:	cisco	model:	security monitoring analysis and response system	scope:	eq	version:	*	Trust: 1.0
vendor:	cisco	model:	security monitoring, analysis and response system	scope:	-	version:	-	Trust: 0.8
vendor:	cisco	model:	security monitoring analysis and response system	scope:	-	version:	-	Trust: 0.6

sources: JVNDB: JVNDB-2013-001758 // CNNVD: CNNVD-201303-110 // NVD: CVE-2013-1140

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2013-1140
value:	MEDIUM
Trust: 1.0
NVD:	CVE-2013-1140
value:	MEDIUM
Trust: 0.8
CNNVD:	CNNVD-201303-110
value:	MEDIUM
Trust: 0.6
VULHUB:	VHN-61142
value:	MEDIUM
Trust: 0.1
VULMON:	CVE-2013-1140
value:	MEDIUM
Trust: 0.1

nvd@nist.gov:	CVE-2013-1140
severity:	MEDIUM
baseScore:	4.3
vectorString:	AV:N/AC:M/AU:N/C:P/I:N/A:N
accessVector:	NETWORK
accessComplexity:	MEDIUM
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	8.6
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.9
VULHUB:	VHN-61142
severity:	MEDIUM
baseScore:	4.3
vectorString:	AV:N/AC:M/AU:N/C:P/I:N/A:N
accessVector:	NETWORK
accessComplexity:	MEDIUM
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	8.6
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

sources: VULHUB: VHN-61142 // VULMON: CVE-2013-1140 // JVNDB: JVNDB-2013-001758 // CNNVD: CNNVD-201303-110 // NVD: CVE-2013-1140

PROBLEMTYPE DATA

problemtype:

CWE-200

Trust: 1.9

sources: VULHUB: VHN-61142 // JVNDB: JVNDB-2013-001758 // NVD: CVE-2013-1140

THREAT TYPE

network

Trust: 0.6

sources: BID: 58809 // BID: 78028

TYPE

information disclosure

Trust: 0.6

sources: CNNVD: CNNVD-201303-110

CONFIGURATIONS

sources: JVNDB: JVNDB-2013-001758

PATCH

title:	Cisco MARS Information Disclosure Vulnerability	url:	http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-1140	Trust: 0.8
title:	28457	url:	http://tools.cisco.com/security/center/viewAlert.x?alertId=28457	Trust: 0.8
title:	Cisco: Cisco MARS Information Disclosure Vulnerability	url:	https://vulmon.com/vendoradvisory?qidtp=cisco_security_advisories_and_alerts_ciscoproducts&qid=Cisco-SA-20130304-CVE-2013-1140	Trust: 0.1

sources: VULMON: CVE-2013-1140 // JVNDB: JVNDB-2013-001758

EXTERNAL IDS

db:	NVD	id:	CVE-2013-1140	Trust: 3.2
db:	JVNDB	id:	JVNDB-2013-001758	Trust: 0.8
db:	CNNVD	id:	CNNVD-201303-110	Trust: 0.7
db:	CISCO	id:	20130304 CISCO MARS INFORMATION DISCLOSURE VULNERABILITY	Trust: 0.6
db:	BID	id:	78028	Trust: 0.4
db:	BID	id:	58809	Trust: 0.4
db:	VULHUB	id:	VHN-61142	Trust: 0.1
db:	VULMON	id:	CVE-2013-1140	Trust: 0.1

sources: VULHUB: VHN-61142 // VULMON: CVE-2013-1140 // BID: 58809 // BID: 78028 // JVNDB: JVNDB-2013-001758 // CNNVD: CNNVD-201303-110 // NVD: CVE-2013-1140

REFERENCES

url:	http://tools.cisco.com/security/center/content/ciscosecuritynotice/cve-2013-1140	Trust: 2.4
url:	http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2013-1140	Trust: 0.8
url:	http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2013-1140	Trust: 0.8
url:	http://www.cisco.com	Trust: 0.3
url:	http://www.cisco.com/en/us/products/ps6241/index.html	Trust: 0.3
url:	https://cwe.mitre.org/data/definitions/200.html	Trust: 0.1
url:	https://nvd.nist.gov	Trust: 0.1
url:	http://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20130304-cve-2013-1140	Trust: 0.1

sources: VULHUB: VHN-61142 // VULMON: CVE-2013-1140 // BID: 58809 // BID: 78028 // JVNDB: JVNDB-2013-001758 // CNNVD: CNNVD-201303-110 // NVD: CVE-2013-1140

CREDITS

Cisco

Trust: 0.3

sources: BID: 58809

SOURCES

db:	VULHUB	id:	VHN-61142
db:	VULMON	id:	CVE-2013-1140
db:	BID	id:	58809
db:	BID	id:	78028
db:	JVNDB	id:	JVNDB-2013-001758
db:	CNNVD	id:	CNNVD-201303-110
db:	NVD	id:	CVE-2013-1140

LAST UPDATE DATE

2024-11-23T22:39:06.125000+00:00

SOURCES UPDATE DATE

db:	VULHUB	id:	VHN-61142	date:	2013-03-06T00:00:00
db:	VULMON	id:	CVE-2013-1140	date:	2013-03-06T00:00:00
db:	BID	id:	58809	date:	2013-03-04T00:00:00
db:	BID	id:	78028	date:	2013-03-06T00:00:00
db:	JVNDB	id:	JVNDB-2013-001758	date:	2013-03-07T00:00:00
db:	CNNVD	id:	CNNVD-201303-110	date:	2013-03-07T00:00:00
db:	NVD	id:	CVE-2013-1140	date:	2024-11-21T01:48:58.747

SOURCES RELEASE DATE

db:	VULHUB	id:	VHN-61142	date:	2013-03-06T00:00:00
db:	VULMON	id:	CVE-2013-1140	date:	2013-03-06T00:00:00
db:	BID	id:	58809	date:	2013-03-04T00:00:00
db:	BID	id:	78028	date:	2013-03-06T00:00:00
db:	JVNDB	id:	JVNDB-2013-001758	date:	2013-03-07T00:00:00
db:	CNNVD	id:	CNNVD-201303-110	date:	2013-03-07T00:00:00
db:	NVD	id:	CVE-2013-1140	date:	2013-03-06T13:10:25.970