ID OPENVAS:1361412562310140795 Type openvas Reporter Copyright (C) 2018 Greenbone Networks GmbH Modified 2020-08-24T00:00:00
Description
Detection of iDashboards.
The script sends a connection request to the server and attempts to detect iDashboards and to extract its
version.
###############################################################################
# OpenVAS Vulnerability Test
#
# iDashboards Detection
#
# Authors:
# Christian Kuersteiner <christian.kuersteiner@greenbone.net>
#
# Copyright:
# Copyright (C) 2018 Greenbone Networks GmbH
#
# This program is free software; you can redistribute it and/or modify
# it under the terms of the GNU General Public License as published by
# the Free Software Foundation; either version 2 of the License, or
# (at your option) any later version.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program; if not, write to the Free Software
# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
###############################################################################
if(description)
{
script_oid("1.3.6.1.4.1.25623.1.0.140795");
script_version("2020-08-24T15:18:35+0000");
script_tag(name:"last_modification", value:"2020-08-24 15:18:35 +0000 (Mon, 24 Aug 2020)");
script_tag(name:"creation_date", value:"2018-02-22 14:58:39 +0700 (Thu, 22 Feb 2018)");
script_tag(name:"cvss_base", value:"0.0");
script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:N/I:N/A:N");
script_tag(name:"qod_type", value:"remote_banner");
script_name("iDashboards Detection");
script_tag(name:"summary", value:"Detection of iDashboards.
The script sends a connection request to the server and attempts to detect iDashboards and to extract its
version.");
script_category(ACT_GATHER_INFO);
script_copyright("Copyright (C) 2018 Greenbone Networks GmbH");
script_family("Product detection");
script_dependencies("find_service.nasl", "httpver.nasl", "global_settings.nasl");
script_require_ports("Services/www", 80, 443);
script_exclude_keys("Settings/disable_cgi_scanning");
script_xref(name:"URL", value:"https://www.idashboards.com/");
exit(0);
}
include("cpe.inc");
include("host_details.inc");
include("http_func.inc");
include("http_keepalive.inc");
include("port_service_func.inc");
port = http_get_port(default: 443);
res = http_get_cache(port: port, item: "/idashboards/");
if ("'movie','iDashboards'" >< res || ('data="iDashboards.swf"' >< res && "to view the dashboards" >< res)) {
version = "unknown";
# see Configuration Disclosure (CVE-2018-7209)
url = '/idashboards/config.xml';
req = http_get(port: port, item: url);
res = http_keepalive_send_recv(port: port, data: req);
# <version>9.5e</version>
vers = eregmatch(pattern: "<version>([^<]+)</version>", string: res);
if (!isnull(vers[1])) {
version = vers[1];
concUrl = url;
}
set_kb_item(name: "idashboard/installed", value: TRUE);
cpe = build_cpe(value: version, exp: "^([0-9a-z.]+)", base: "cpe:/a:idashboards:idashboards:");
if (!cpe)
cpe = 'cpe:/a:idashboards:idashboards';
register_product(cpe: cpe, location: "/idashboards", port: port, service: "www");
log_message(data: build_detection_report(app: "iDashboard", version: version, install: "/idashboards", cpe: cpe,
concluded: vers[0], concludedUrl: concUrl),
port: port);
exit(0);
}
exit(0);
{"id": "OPENVAS:1361412562310140795", "type": "openvas", "bulletinFamily": "scanner", "title": "iDashboards Detection", "description": "Detection of iDashboards.\n\nThe script sends a connection request to the server and attempts to detect iDashboards and to extract its\nversion.", "published": "2018-02-22T00:00:00", "modified": "2020-08-24T00:00:00", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:P/I:N/A:N"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310140795", "reporter": "Copyright (C) 2018 Greenbone Networks GmbH", "references": ["https://www.idashboards.com/"], "cvelist": ["CVE-2018-7209"], "lastseen": "2020-10-04T15:17:28", "viewCount": 19, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2018-7209"]}], "modified": "2020-10-04T15:17:28", "rev": 2}, "score": {"value": 5.4, "vector": "NONE", "modified": "2020-10-04T15:17:28", "rev": 2}, "vulnersScore": 5.4}, "pluginID": "1361412562310140795", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# iDashboards Detection\n#\n# Authors:\n# Christian Kuersteiner <christian.kuersteiner@greenbone.net>\n#\n# Copyright:\n# Copyright (C) 2018 Greenbone Networks GmbH\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License as published by\n# the Free Software Foundation; either version 2 of the License, or\n# (at your option) any later version.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.140795\");\n script_version(\"2020-08-24T15:18:35+0000\");\n script_tag(name:\"last_modification\", value:\"2020-08-24 15:18:35 +0000 (Mon, 24 Aug 2020)\");\n script_tag(name:\"creation_date\", value:\"2018-02-22 14:58:39 +0700 (Thu, 22 Feb 2018)\");\n script_tag(name:\"cvss_base\", value:\"0.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:N\");\n\n script_tag(name:\"qod_type\", value:\"remote_banner\");\n\n script_name(\"iDashboards Detection\");\n\n script_tag(name:\"summary\", value:\"Detection of iDashboards.\n\nThe script sends a connection request to the server and attempts to detect iDashboards and to extract its\nversion.\");\n\n script_category(ACT_GATHER_INFO);\n\n script_copyright(\"Copyright (C) 2018 Greenbone Networks GmbH\");\n script_family(\"Product detection\");\n script_dependencies(\"find_service.nasl\", \"httpver.nasl\", \"global_settings.nasl\");\n script_require_ports(\"Services/www\", 80, 443);\n script_exclude_keys(\"Settings/disable_cgi_scanning\");\n\n script_xref(name:\"URL\", value:\"https://www.idashboards.com/\");\n\n exit(0);\n}\n\ninclude(\"cpe.inc\");\ninclude(\"host_details.inc\");\ninclude(\"http_func.inc\");\ninclude(\"http_keepalive.inc\");\ninclude(\"port_service_func.inc\");\n\nport = http_get_port(default: 443);\n\nres = http_get_cache(port: port, item: \"/idashboards/\");\n\nif (\"'movie','iDashboards'\" >< res || ('data=\"iDashboards.swf\"' >< res && \"to view the dashboards\" >< res)) {\n version = \"unknown\";\n\n # see Configuration Disclosure (CVE-2018-7209)\n url = '/idashboards/config.xml';\n req = http_get(port: port, item: url);\n res = http_keepalive_send_recv(port: port, data: req);\n\n # <version>9.5e</version>\n vers = eregmatch(pattern: \"<version>([^<]+)</version>\", string: res);\n if (!isnull(vers[1])) {\n version = vers[1];\n concUrl = url;\n }\n\n set_kb_item(name: \"idashboard/installed\", value: TRUE);\n\n cpe = build_cpe(value: version, exp: \"^([0-9a-z.]+)\", base: \"cpe:/a:idashboards:idashboards:\");\n if (!cpe)\n cpe = 'cpe:/a:idashboards:idashboards';\n\n register_product(cpe: cpe, location: \"/idashboards\", port: port, service: \"www\");\n\n log_message(data: build_detection_report(app: \"iDashboard\", version: version, install: \"/idashboards\", cpe: cpe,\n concluded: vers[0], concludedUrl: concUrl),\n port: port);\n exit(0);\n}\n\nexit(0);\n", "naslFamily": "Product detection", "immutableFields": []}
{"cve": [{"lastseen": "2021-02-02T06:52:41", "description": "An issue was discovered in iDashboards 9.6b. It allows remote attackers to obtain sensitive information via a direct request for the idashboards/config.xml URI, as demonstrated by intranet URLs for reports.", "edition": 6, "cvss3": {"exploitabilityScore": 3.9, "cvssV3": {"baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "attackComplexity": "LOW", "scope": "UNCHANGED", "attackVector": "NETWORK", "availabilityImpact": "NONE", "integrityImpact": "NONE", "baseScore": 7.5, "privilegesRequired": "NONE", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "userInteraction": "NONE", "version": "3.0"}, "impactScore": 3.6}, "published": "2018-02-18T04:29:00", "title": "CVE-2018-7209", "type": "cve", "cwe": ["CWE-200"], "bulletinFamily": "NVD", "cvss2": {"severity": "MEDIUM", "exploitabilityScore": 10.0, "obtainAllPrivilege": false, "userInteractionRequired": false, "obtainOtherPrivilege": false, "cvssV2": {"accessComplexity": "LOW", "confidentialityImpact": "PARTIAL", "availabilityImpact": "NONE", "integrityImpact": "NONE", "baseScore": 5.0, "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N", "version": "2.0", "accessVector": "NETWORK", "authentication": "NONE"}, "impactScore": 2.9, "obtainUserPrivilege": false}, "cvelist": ["CVE-2018-7209"], "modified": "2018-03-12T16:35:00", "cpe": ["cpe:/a:idashboards:idashboards:9.6b"], "id": "CVE-2018-7209", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-7209", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:P/I:N/A:N"}, "cpe23": ["cpe:2.3:a:idashboards:idashboards:9.6b:*:*:*:*:*:*:*"]}]}