Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2012-2019 and is owned by Tenable, Inc. or an Affiliate thereof.IBM_RATIONAL_CLEARQUEST_7_1_2_7.NASL
HistoryAug 16, 2012 - 12:00 a.m.

IBM Rational ClearQuest 7.x < 7.1.2.7 / 8.0.0.x < 8.0.0.3 Multiple Vulnerabilities (credentialed check)

2012-08-1600:00:00
This script is Copyright (C) 2012-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
262
JSON

The remote host has a version of IBM Rational ClearQuest 7.x prior to 7.1.2.7 / 8.0.0.x prior to 8.0.0.3 installed. It is, therefore, affected by the following vulnerabilities :

  • A cross-site scripting vulnerability exists that can be exploited by an attacker by tricking a victim into opening a specially crafted report. (CVE-2012-2205)

  • An information disclosure vulnerability exists that allows an attacker unauthorized access to password information. (CVE-2012-2165)

  • ClearQuest Web sometimes displays sensitive stack trace information in error messages. (CVE-2012-2168)

  • The ClearQuest Web Help component contains a reflected cross-site scripting vulnerability. (CVE-2012-2161)

  • Some scripts inside the ClearQuest Web Help application are vulnerable to open redirect attacks. (CVE-2012-2159)

  • The ClearQuest web client is subject to an elevated privilege attack that allows an attacker access to the ‘Site Administration’ menu. (CVE-2012-2164)

  • The ClearQuest web client file-upload functionality is affected by a cross-site scripting vulnerability that can be exploited by an authenticated user via the ‘File Description’ field. (CVE-2012-2169)

  • Attackers can obtain potentially sensitive information via a request to a ‘snoop’, ‘hello’, ‘ivt/’, ‘hitcount’, ‘HitCount.jsp’, ‘HelloHTMLError.jsp’, ‘HelloHTML.jsp’, ‘HelloVXMLError.jsp’, ‘HelloWMLError.jsp’, ‘HellowWML.jsp’ or ‘cqweb/j_security_check’ sample script. (CVE-2012-0744)

#
# (C) Tenable Network Security, Inc.
#


include("compat.inc");


if (description)
{
  script_id(61565);
  script_version("1.12");
  script_cvs_date("Date: 2019/12/04");

  script_cve_id(
    "CVE-2012-0744",
    "CVE-2012-2159",
    "CVE-2012-2161",
    "CVE-2012-2164",
    "CVE-2012-2165",
    "CVE-2012-2168",
    "CVE-2012-2169",
    "CVE-2012-2205"
  );
  script_bugtraq_id(53884, 54222, 55125);

  script_name(english:"IBM Rational ClearQuest 7.x < 7.1.2.7 / 8.0.0.x < 8.0.0.3 Multiple Vulnerabilities (credentialed check)");
  script_summary(english:"Checks the version of IBM Rational ClearQuest.");

  script_set_attribute(attribute:"synopsis", value:
"The remote host has software installed that is affected by multiple
vulnerabilities.");
  script_set_attribute(attribute:"description", value:
"The remote host has a version of IBM Rational ClearQuest 7.x prior to
7.1.2.7 / 8.0.0.x prior to 8.0.0.3 installed. It is, therefore,
affected by the following vulnerabilities :

  - A cross-site scripting vulnerability exists that can
    be exploited by an attacker by tricking a victim into
    opening a specially crafted report. (CVE-2012-2205)

  - An information disclosure vulnerability exists that
    allows an attacker unauthorized access to password
    information. (CVE-2012-2165)

  - ClearQuest Web sometimes displays sensitive stack trace
    information in error messages. (CVE-2012-2168)

  - The ClearQuest Web Help component contains a reflected 
    cross-site scripting vulnerability. (CVE-2012-2161)

  - Some scripts inside the ClearQuest Web Help application 
    are vulnerable to open redirect attacks. (CVE-2012-2159)

  - The ClearQuest web client is subject to an elevated 
    privilege attack that allows an attacker access to the
    'Site Administration' menu. (CVE-2012-2164)

  - The ClearQuest web client file-upload functionality is
    affected by a cross-site scripting vulnerability that
    can be exploited by an authenticated user via the 'File 
    Description' field. (CVE-2012-2169)

  - Attackers can obtain potentially sensitive information
    via a request to a 'snoop', 'hello', 'ivt/', 'hitcount',
    'HitCount.jsp', 'HelloHTMLError.jsp', 'HelloHTML.jsp',
    'HelloVXMLError.jsp', 'HelloWMLError.jsp',
    'HellowWML.jsp' or 'cqweb/j_security_check' sample
    script. (CVE-2012-0744)");
  script_set_attribute(attribute:"see_also", value:"http://www-01.ibm.com/support/docview.wss?uid=swg21606319");
  script_set_attribute(attribute:"see_also", value:"http://www-01.ibm.com/support/docview.wss?uid=swg21606385");
  script_set_attribute(attribute:"see_also", value:"http://www-01.ibm.com/support/docview.wss?uid=swg21605840");
  script_set_attribute(attribute:"see_also", value:"http://www-01.ibm.com/support/docview.wss?uid=swg21605839");
  script_set_attribute(attribute:"see_also", value:"http://www-01.ibm.com/support/docview.wss?uid=swg21605838");
  script_set_attribute(attribute:"see_also", value:"http://www-01.ibm.com/support/docview.wss?uid=swg21606318");
  script_set_attribute(attribute:"solution", value:
"Upgrade to IBM Rational ClearQuest 7.1.2.7 / 8.0.0.3 or later.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:N");
  script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2012-2159");

  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");
  script_cwe_id(20, 74, 79, 442, 629, 711, 712, 722, 725, 750, 751, 800, 801, 809, 811, 864, 900, 928, 931, 990);

  script_set_attribute(attribute:"vuln_publication_date", value:"2012/06/26");
  script_set_attribute(attribute:"patch_publication_date", value:"2012/06/26");
  script_set_attribute(attribute:"plugin_publication_date", value:"2012/08/16");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:ibm:rational_clearquest");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Windows");

  script_copyright(english:"This script is Copyright (C) 2012-2019 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("ibm_rational_clearquest_installed.nasl");
  script_require_keys("installed_sw/IBM Rational ClearQuest");

  exit(0);
}

include('ibm_rational_clearquest_version.inc');

rational_clearquest_check_version(
  fixes:make_nested_list(
    make_array("Min", "7.1.0.0", "Fix UI", "7.1.2.7", "Fix", "7.1207.0.127"),
    make_array("Min", "8.0.0.0", "Fix UI", "8.0.0.3", "Fix", "8.3.0.668")),
  severity:SECURITY_WARNING,
  xss:TRUE
);
VendorProductVersionCPE
ibmrational_clearquestcpe:/a:ibm:rational_clearquest

Related

ibm 24
nessus 5
cvelist 8
prion 8
cve 8
openvas 2
seebug 1
ibm
ibm
Security Bulletin: Open redirect and cross-site scripting vulnerabilities in the InfoSphere Streams help system (CVE-2012-2159, CVE-2012-2161)
2022-09-25 23:13:40
Security Bulletin: Open Redirect and Cross-Site Scripting Vulnerabilities in the Rational Change Help System (CVE-2012-2159, CVE-2012-2161)
2018-06-17 05:01:49
Security Bulletin: Security vulnerabilities fixed in IBM WebSphere Operational Decision Management and IBM WebSphere ILOG JRules
2022-12-05 16:59:27
nessus
nessus
IBM Data Studio 3.1 / 3.1.1 Help System Multiple Vulnerabilities
2013-03-15 00:00:00
IBM Lotus Domino 8.5.x Multiple Vulnerabilities
2013-04-26 00:00:00
IBM Rational ClearQuest Multiple Script Information Disclosure
2012-10-29 00:00:00
cvelist
cvelist
CVE-2012-2159
2012-06-20 10:00:00
CVE-2012-2205
2012-08-17 20:00:00
CVE-2012-2169
2012-08-17 20:00:00
prion
prion
Cross site scripting
2012-08-17 20:55:00
Open redirect
2012-06-20 10:27:00
Cross site scripting
2012-08-17 20:55:00
cve
cve
CVE-2012-2205
2012-08-17 20:55:00
CVE-2012-2159
2012-06-20 10:27:00
CVE-2012-2169
2012-08-17 20:55:00
openvas
openvas
IBM Rational ClearQuest Multiple Information Disclosure Vulnerabilities
2013-06-03 00:00:00
IBM Rational ClearQuest Multiple Information Disclosure Vulnerabilities
2013-06-03 00:00:00
seebug
seebug
IBM Rational AppScan 8.x/7.x 多个安全漏洞
2012-06-16 00:00:00
JSON
Related for IBM_RATIONAL_CLEARQUEST_7_1_2_7.NASL
ibm24nessus5cvelist8prion8cve8openvas2seebug1