Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2012-2021 and is owned by Tenable, Inc. or an Affiliate thereof.DEBIAN_DSA-2537.NASL
HistoryAug 31, 2012 - 12:00 a.m.

Debian DSA-2537-1 : typo3-src - several vulnerabilities

2012-08-3100:00:00
This script is Copyright (C) 2012-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
18

4.6 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:H/Au:S/C:P/I:P/A:P

0.003 Low

EPSS

Percentile

71.7%

JSON

Several vulnerabilities were discovered in TYPO3, a content management system.

  • CVE-2012-3527 An insecure call to unserialize in the help system enables arbitrary code execution by authenticated users.

  • CVE-2012-3528 The TYPO3 backend contains several cross-site scripting vulnerabilities.

  • CVE-2012-3529 Authenticated users who can access the configuration module can obtain the encryption key, allowing them to escalate their privileges.

  • CVE-2012-3530 The RemoveXSS HTML sanitizer did not remove several HTML5 JavaScript, thus failing to mitigate the impact of cross-site scripting vulnerabilities.

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were  
# extracted from Debian Security Advisory DSA-2537. The text 
# itself is copyright (C) Software in the Public Interest, Inc.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(61735);
  script_version("1.10");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/11");

  script_cve_id("CVE-2012-3527", "CVE-2012-3528", "CVE-2012-3529", "CVE-2012-3530", "CVE-2012-3531");
  script_bugtraq_id(55052);
  script_xref(name:"DSA", value:"2537");

  script_name(english:"Debian DSA-2537-1 : typo3-src - several vulnerabilities");
  script_summary(english:"Checks dpkg output for the updated package");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote Debian host is missing a security-related update."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"Several vulnerabilities were discovered in TYPO3, a content management
system.

  - CVE-2012-3527
    An insecure call to unserialize in the help system
    enables arbitrary code execution by authenticated users.

  - CVE-2012-3528
    The TYPO3 backend contains several cross-site scripting
    vulnerabilities.

  - CVE-2012-3529
    Authenticated users who can access the configuration
    module can obtain the encryption key, allowing them to
    escalate their privileges.

  - CVE-2012-3530
    The RemoveXSS HTML sanitizer did not remove several
    HTML5 JavaScript, thus failing to mitigate the impact of
    cross-site scripting vulnerabilities."
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://security-tracker.debian.org/tracker/CVE-2012-3527"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://security-tracker.debian.org/tracker/CVE-2012-3528"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://security-tracker.debian.org/tracker/CVE-2012-3529"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://security-tracker.debian.org/tracker/CVE-2012-3530"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://packages.debian.org/source/squeeze/typo3-src"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://www.debian.org/security/2012/dsa-2537"
  );
  script_set_attribute(
    attribute:"solution", 
    value:
"Upgrade the typo3-src packages.

For the stable distribution (squeeze), these problems have been fixed
in version 4.3.9+dfsg1-1+squeeze5."
  );
  script_set_cvss_base_vector("CVSS2#AV:N/AC:H/Au:S/C:P/I:P/A:P");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:typo3-src");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:debian:debian_linux:6.0");

  script_set_attribute(attribute:"patch_publication_date", value:"2012/08/30");
  script_set_attribute(attribute:"plugin_publication_date", value:"2012/08/31");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2012-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"Debian Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/Debian/release", "Host/Debian/dpkg-l");

  exit(0);
}


include("audit.inc");
include("debian_package.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (!get_kb_item("Host/Debian/release")) audit(AUDIT_OS_NOT, "Debian");
if (!get_kb_item("Host/Debian/dpkg-l")) audit(AUDIT_PACKAGE_LIST_MISSING);


flag = 0;
if (deb_check(release:"6.0", prefix:"typo3", reference:"4.3.9+dfsg1-1+squeeze5")) flag++;
if (deb_check(release:"6.0", prefix:"typo3-database", reference:"4.3.9+dfsg1-1+squeeze5")) flag++;
if (deb_check(release:"6.0", prefix:"typo3-src-4.3", reference:"4.3.9+dfsg1-1+squeeze5")) flag++;

if (flag)
{
  if (report_verbosity > 0) security_warning(port:0, extra:deb_report_get());
  else security_warning(0);
  exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");
VendorProductVersionCPE
debiandebian_linuxtypo3-srcp-cpe:/a:debian:debian_linux:typo3-src
debiandebian_linux6.0cpe:/o:debian:debian_linux:6.0

Related

openvas 3
debian 1
securityvulns 2
osv 5
cve 5
nvd 5
ubuntucve 5
prion 5
seebug 1
cvelist 5
github 4
openvas
openvas
TYPO3 Multiple Vulnerabilities (Aug 2012)
2014-01-03 00:00:00
Debian: Security Advisory (DSA-2537-1)
2012-09-07 00:00:00
Debian Security Advisory DSA 2537-1 (typo3-src)
2012-09-07 00:00:00
debian
debian
[SECURITY] [DSA 2537-1] typo3-src security update
2012-08-30 19:58:21
securityvulns
securityvulns
[SECURITY] [DSA 2537-1] typo3-src security update
2012-09-02 00:00:00
Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
2012-09-02 00:00:00
osv
osv
typo3-src - several
2012-08-30 00:00:00
Typo3 API XSS Vulnerability
2022-05-17 01:43:49
Typo3 Install Tool XSS Vulnerability
2022-05-17 01:43:44
cve
cve
CVE-2012-3530
2012-09-05 23:55:02
CVE-2012-3531
2012-09-05 23:55:02
CVE-2012-3527
2012-09-05 23:55:01
nvd
nvd
CVE-2012-3530
2012-09-05 23:55:02
CVE-2012-3527
2012-09-05 23:55:01
CVE-2012-3531
2012-09-05 23:55:02
ubuntucve
ubuntucve
CVE-2012-3530
2012-09-05 00:00:00
CVE-2012-3527
2012-09-05 00:00:00
CVE-2012-3531
2012-09-05 00:00:00
prion
prion
Cross site scripting
2012-09-05 23:55:00
Cross site scripting
2012-09-05 23:55:00
Design/Logic Flaw
2012-09-05 23:55:00
seebug
seebug
TYPO3 不完整黑名单跨站脚本漏洞(CVE-2012-3530)
2012-09-09 00:00:00
cvelist
cvelist
CVE-2012-3530
2012-09-05 23:00:00
CVE-2012-3527
2012-09-05 23:00:00
CVE-2012-3531
2012-09-05 23:00:00
github
github
Typo3 API XSS Vulnerability
2022-05-17 01:43:49
Typo3 Install Tool XSS Vulnerability
2022-05-17 01:43:44
Typo3 Backend XSS Vulnerability
2022-05-17 01:43:57

4.6 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:H/Au:S/C:P/I:P/A:P

0.003 Low

EPSS

Percentile

71.7%

JSON
Related for DEBIAN_DSA-2537.NASL
openvas3debian1securityvulns2osv5cve5nvd5ubuntucve5prion5seebug1cvelist5github4