Lucene search
This script is Copyright (C) 2016-2019 and is owned by Tenable, Inc. or an Affiliate thereof.WEBSPHERE_PORTAL_8_0_0_1_CF20.NASLHistoryAug 23, 2016 - 12:00 a.m.
IBM WebSphere Portal 8.0.0.x < 8.0.0.1 CF20 Multiple Vulnerabilities
2016-08-2300:00:00
This script is Copyright (C) 2016-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
13
5.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:P/A:N
7.4 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:H/A:N
0.001 Low
EPSS
Percentile
49.8%
The version of IBM WebSphere Portal installed on the remote host is 8.0.0.x prior to 8.0.0.1 CF20. It is, therefore, affected by multiple vulnerabilities :
- An open redirect vulnerability exists due to improper validation of user-supplied input. An unauthenticated, remote attacker can exploit this, via a specially crafted link, to redirect a user from the intended legitimate web site to an arbitrary web site of the attacker’s choosing. (CVE-2015-7428)
- An XML external entity (XXE) injection vulnerability exists due to an incorrectly configured XML parser accepting XML external entities from an untrusted source. An authenticated, remote attacker can exploit this, via specially crafted XML data, to cause a denial of service or disclose sensitive information.
(CVE-2016-0245)
#
# (C) Tenable Network Security, Inc.
#
include("compat.inc");
if (description)
{
script_id(93076);
script_version("1.5");
script_cvs_date("Date: 2019/11/14");
script_cve_id("CVE-2015-7428", "CVE-2016-0245");
script_bugtraq_id(83479, 83485);
script_name(english:"IBM WebSphere Portal 8.0.0.x < 8.0.0.1 CF20 Multiple Vulnerabilities");
script_summary(english:"Checks for the installed patch.");
script_set_attribute(attribute:"synopsis", value:
"The web portal software installed on the remote Windows host is
affected by multiple vulnerabilities.");
script_set_attribute(attribute:"description", value:
"The version of IBM WebSphere Portal installed on the remote host is
8.0.0.x prior to 8.0.0.1 CF20. It is, therefore, affected by multiple
vulnerabilities :
- An open redirect vulnerability exists due to improper
validation of user-supplied input. An unauthenticated,
remote attacker can exploit this, via a specially
crafted link, to redirect a user from the intended
legitimate web site to an arbitrary web site of the
attacker's choosing. (CVE-2015-7428)
- An XML external entity (XXE) injection vulnerability
exists due to an incorrectly configured XML parser
accepting XML external entities from an untrusted
source. An authenticated, remote attacker can exploit
this, via specially crafted XML data, to cause a denial
of service or disclose sensitive information.
(CVE-2016-0245)");
script_set_attribute(attribute:"see_also", value:"http://www-01.ibm.com/support/docview.wss?uid=swg24034497#CF20");
script_set_attribute(attribute:"see_also", value:"https://www-01.ibm.com/support/docview.wss?uid=swg21976358");
script_set_attribute(attribute:"solution", value:
"Upgrade to IBM WebSphere Portal version 8.0.0.1 CF20 or later.");
script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:N");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:H/A:N");
script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2015-7428");
script_set_attribute(attribute:"exploitability_ease", value:"No exploit is required");
script_set_attribute(attribute:"exploit_available", value:"false");
script_set_attribute(attribute:"vuln_publication_date", value:"2016/02/23");
script_set_attribute(attribute:"patch_publication_date", value:"2016/02/23");
script_set_attribute(attribute:"plugin_publication_date", value:"2016/08/23");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"cpe:/a:ibm:websphere_portal");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"CGI abuses");
script_copyright(english:"This script is Copyright (C) 2016-2019 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("websphere_portal_installed.nbin");
script_require_keys("installed_sw/IBM WebSphere Portal");
exit(0);
}
include("websphere_portal_version.inc");
websphere_portal_check_version(
ranges:make_list("8.0.0.0, 8.0.0.1"),
fix:"CF20",
severity:SECURITY_WARNING,
xss:TRUE
);
| Vendor | Product | Version | CPE |
|---|---|---|---|
| ibm | websphere_portal | cpe:/a:ibm:websphere_portal |
Related
prion
prion
Open redirect
2016-02-29 11:59:00
Xxe
2016-02-29 11:59:00
cvelist
cvelist
CVE-2015-7428
2016-02-29 11:00:00
CVE-2016-0245
2016-02-29 11:00:00
cve
cve
CVE-2015-7428
2016-02-29 11:59:00
CVE-2016-0245
2016-02-29 11:59:10
openvas
openvas
IBM WebSphere Portal Open Redirect Vulnerability
2016-08-25 00:00:00
IBM WebSphere Portal XML External Entity DoS Vulnerability
2016-08-25 00:00:00
nvd
nvd
CVE-2015-7428
2016-02-29 11:59:00
CVE-2016-0245
2016-02-29 11:59:10
nessus
nessus
IBM WebSphere Portal Multiple Vulnerabilities (swg21976358)
2016-03-04 00:00:00
IBM WebSphere Portal 8.5.0.0 < 8.5.0.0 CF10 Multiple Vulnerabilities
2016-08-18 00:00:00
5.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:P/A:N
7.4 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:H/A:N
0.001 Low
EPSS
Percentile
49.8%
Related for WEBSPHERE_PORTAL_8_0_0_1_CF20.NASL