Lucene search
This script is Copyright (C) 2003-2021 and is owned by Tenable, Inc. or an Affiliate thereof.NEOTERIS_IVE_XSS.NASLHistoryMay 14, 2003 - 12:00 a.m.
Neoteris IVE swsrv.cgi XSS
2003-05-1400:00:00
This script is Copyright (C) 2003-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
28
6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.003 Low
EPSS
Percentile
70.9%
The remote host is running the Neoteris IVE.
There is a cross-site scripting issue in this server (in the CGI swsrv.cgi) that could allow an attacker to perform a session hijacking.
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# Ref :
# Date: Tue, 6 May 2003 19:14:40 -0700 (PDT)
# From: Dave Palumbo <[email protected]>
# To: [email protected], [email protected]
# Subject: [VulnDiscuss] XSS In Neoteris IVE Allows Session Hijacking
#
# This script was written by Renaud Deraison
# Special thanks to Dave for his help.
include( 'compat.inc' );
if(description)
{
script_id(11608);
script_version("1.33");
script_cve_id("CVE-2003-0217");
script_bugtraq_id(7510);
script_name(english:"Neoteris IVE swsrv.cgi XSS");
script_summary(english:"Checks for a XSS is Neoteris IVE");
script_set_attribute(
attribute:'synopsis',
value:'The remote service is prone to cross-site scripting.'
);
script_set_attribute(
attribute:'description',
value:"The remote host is running the Neoteris IVE.
There is a cross-site scripting issue in this
server (in the CGI swsrv.cgi) that could allow
an attacker to perform a session hijacking."
);
script_set_attribute(
attribute:'solution',
value: "Upgrade to version 3.1 of Neoteris IVE."
);
script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P");
script_set_cvss_temporal_vector("CVSS2#E:H/RL:OF/RC:C");
script_set_attribute(attribute:"exploitability_ease", value:"No exploit is required");
script_set_attribute(attribute:"exploit_available", value:"false");
script_cwe_id(20, 74, 79, 442, 629, 711, 712, 722, 725, 750, 751, 800, 801, 809, 811, 864, 900, 928, 931, 990);
script_set_attribute(
attribute:'see_also',
value:'https://marc.info/?l=bugtraq&m=105283833617480&w=2'
);
script_set_attribute(attribute:"plugin_publication_date", value: "2003/05/14");
script_set_attribute(attribute:"vuln_publication_date", value: "2003/05/13");
script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/19");
script_set_attribute(attribute:"plugin_type", value:"remote");
script_end_attributes();
script_category(ACT_ATTACK);
script_copyright(english:"This script is Copyright (C) 2003-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_family(english:"CGI abuses : XSS");
script_dependencie("find_service1.nasl", "http_version.nasl", "cross_site_scripting.nasl");
script_require_ports("Services/www", 80);
script_exclude_keys("Settings/disable_cgi_scanning");
script_require_keys("Settings/ParanoidReport");
exit(0);
}
# The script code starts here
include("global_settings.inc");
include("misc_func.inc");
include("http.inc");
port = get_http_port(default:80, embedded: 0, no_xss: 1);
test_cgi_xss( port: port, cgi: "swsrv.cgi", qs: "wg=<script>foo</script>",
dirs: list_uniq(make_list( "/dana/fb/smb", cgi_dirs())),
pass_str: "<script>foo</script>" );
Related
cvelist
cvelist
CVE-2003-0217
2003-05-14 04:00:00
nvd
nvd
CVE-2003-0217
2003-06-16 04:00:00
cve
cve
CVE-2003-0217
2003-06-16 04:00:00
securityvulns
securityvulns
XSS In Neoteris IVE Allows Session Hijacking
2003-05-14 00:00:00
6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.003 Low
EPSS
Percentile
70.9%
Related for NEOTERIS_IVE_XSS.NASL