Trend Micro Deep Discovery 3.7.1096 Cross Site Scripting

🗓️ 18 Aug 2015 00:00:00Reported by hyp3rlinxType

packetstorm🔗 packetstormsecurity.com👁 45 Views

Trend Micro Deep Discovery 3.7.1096 Cross Site Scripting vulnerability disclosed by hyp3rlin

Reporter	Title	Published	Views	Family All 11
0day.today	Trend Micro Deep Discovery 3.7.1096 Authentication Bypass / XSS Vulnerabilities	20 Aug 201500:00	–	zdt
CNVD	Trend Micro Deep Discovery Inspector Cross-Site Scripting Vulnerability	20 Aug 201500:00	–	cnvd
CVE	CVE-2015-2872	23 Aug 201515:00	–	cve
Cvelist	CVE-2015-2872	23 Aug 201515:00	–	cvelist
EUVD	EUVD-2015-2960	7 Oct 202500:30	–	euvd
NVD	CVE-2015-2872	23 Aug 201515:59	–	nvd
OpenVAS	Trend Micro Deep Discovery Inspector Authentication Bypass and XSS Vulnerabilities	19 Aug 201600:00	–	openvas
Prion	Cross site scripting	23 Aug 201515:59	–	prion
securityvulns	Trend Micro Deep Discovery XSS	24 Aug 201500:00	–	securityvulns
securityvulns	Trend Micro Deep Discovery security vulnerabilities	24 Aug 201500:00	–	securityvulns

`[+] Credits: John Page aka hyp3rlinx  
  
[+] Website: hyp3rlinx.altervista.org  
  
[+] Source:  
http://hyp3rlinx.altervista.org/advisories/TREND-MICRO-DDI-081815b.txt  
  
  
  
Vendor:  
================================  
www.trendmicro.com  
  
  
  
Product:  
==============================================================  
Trend Micro Deep Discovery 3.7.1096  
  
The Trend Micro Deep Discovery platform "enables you to detect,  
analyze, and respond to today’s stealthy, targeted attacks  
in real time." It may be deployed on a network as an appliance.  
  
  
  
Vulnerability Type:  
==========================  
Cross Site Scripting (XSS)  
  
  
  
CVE Reference:  
==============  
CVE-2015-2872  
  
  
  
  
Vulnerability Details:  
==========================================================  
http://esupport.trendmicro.com/solution/en-US/1112206.aspx  
  
http://www.kb.cert.org/vuls/id/248692  
  
Deep Discovery Inspector is vulnerable to XSS attacks that  
could allow an unauthenticated user to execute malicious content.  
  
On some legacy browsers like IE 7 with a low Security Level,  
Deep Discovery Inspector is vulnerable to XSS that allows an  
unauthenticated user to execute malicious content through the index.php  
The widget implementation is vulnerable to XSS that allows an  
unauthenticated user to execute malicious content.  
  
  
  
  
Exploit code(s):  
===============  
https://localhost/widget/index.php?menuUrl=1&contentUrl=  
'"%25;alert('XSS+By+hyp3rlinx+\nMarch+2015')//  
  
  
  
  
Disclosure Timeline:  
=========================================================  
Vendor Notification: March 26, 2015  
August 18, 2015 : Public Disclosure  
  
  
  
  
Exploitation Technique:  
=======================  
Remote  
  
  
  
Severity Level:  
=========================================================  
Medium  
  
  
  
Description:  
==========================================================  
  
  
Request Method(s): [+] GET  
  
  
Vulnerable Product: [+] Trend Micro Deep Discovery 3.7.1096  
  
  
Vulnerable Parameter(s): [+] contentURL  
  
  
Affected Area(s): [+] Trend Micro Deep Discovery  
  
  
===========================================================  
  
[+] Disclaimer  
Permission is hereby granted for the redistribution of this advisory,  
provided that it is not altered except by reformatting it, and that due  
credit is given. Permission is explicitly given for insertion in  
vulnerability databases and similar, provided that due credit is given to  
the author. The author is not responsible for any misuse of the information  
contained herein and prohibits any malicious use of all security related  
information or exploits by the author or elsewhere.  
  
by hyp3rlinx  
`

18 Aug 2015 00:00Current

6.6Medium risk

Vulners AI Score6.6

EPSS0.02576