ID
VAR-E-201311-0106
CVE
| cve_id: | CVE-2013-6780 | Trust: 0.8 |
TITLE
Cisco Ironport AsyncOS Cross Site Scripting
Trust: 0.6
AFFECTED PRODUCTS
| vendor: | cisco | model: | ironport asyncos | scope: | - | version: | - | Trust: 0.5 |
| vendor: | yahoo | model: | yui | scope: | eq | version: | 2.8.1 | Trust: 0.3 |
| vendor: | yahoo | model: | yui | scope: | eq | version: | 2.5.2 | Trust: 0.3 |
| vendor: | yahoo | model: | yui | scope: | eq | version: | 2.8.0 | Trust: 0.3 |
| vendor: | yahoo | model: | yui | scope: | eq | version: | 2.7.0 | Trust: 0.3 |
| vendor: | yahoo | model: | yui | scope: | eq | version: | 2.6.0 | Trust: 0.3 |
| vendor: | yahoo | model: | yui | scope: | eq | version: | 2.5.1 | Trust: 0.3 |
| vendor: | yahoo | model: | yui | scope: | eq | version: | 2.5.0 | Trust: 0.3 |
EXPLOIT
Vendor: Cisco
Product webpage: http://www.cisco.com
Affected version(s):
Cisco Ironport ESA - AsyncOS 8.0.1-023
Cisco Ironport WSA - AsyncOS 8.5.5-022
Cisco Ironport SMA - AsyncOS 8.4.0-126
Date: 24/02/2015
Credits: Glafkos Charalambous
CVE: CVE-2013-6780
Disclosure Timeline:
28-10-2014: Vendor Notification
28-10-2014: Vendor Response/Feedback
22-01-2015: Vendor Fix/Patch
24-02-2015: Public Disclosure
Description:
Cisco AsyncOS is vulnerable to unauthenticated Cross-site scripting (XSS), caused by improper validation
of user supplied input in the (uploader.swf) Uploader component in Yahoo! versions 2.5.0 through 2.9.0.
An attacker is able to inject arbitrary web script or HTML via the allowedDomain parameter.
XSS Payload:
http(s)://domain.com/yui/uploader/assets/uploader.swf?allowedDomain=\"})))}catch(e){alert('XSS');}//
References:
https://tools.cisco.com/bugsearch/bug/CSCur44409
https://tools.cisco.com/bugsearch/bug/CSCur89626
https://tools.cisco.com/bugsearch/bug/CSCur89624
http://yuilibrary.com/support/20131111-vulnerability/
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-6780
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6780
Trust: 0.6
PRICE
free
Trust: 0.6
TYPE
xss
Trust: 0.5
TAGS
| tag: | exploit | Trust: 0.5 |
| tag: | xss | Trust: 0.5 |
EXTERNAL IDS
| db: | NVD | id: | CVE-2013-6780 | Trust: 1.4 |
| db: | EDBNET | id: | 80134 | Trust: 0.6 |
| db: | PACKETSTORM | id: | 130527 | Trust: 0.5 |
| db: | BID | id: | 63660 | Trust: 0.3 |
REFERENCES
| url: | https://www.intelligentexploit.com | Trust: 0.6 |
| url: | https://nvd.nist.gov/vuln/detail/cve-2013-6780 | Trust: 0.5 |
| url: | http://yuilibrary.com/ | Trust: 0.3 |
SOURCES
| db: | BID | id: | 63660 |
| db: | PACKETSTORM | id: | 130527 |
| db: | EDBNET | id: | 80134 |
LAST UPDATE DATE
2022-07-27T09:54:22.886000+00:00
SOURCES UPDATE DATE
| db: | BID | id: | 63660 | date: | 2015-04-13T20:44:00 |
SOURCES RELEASE DATE
| db: | BID | id: | 63660 | date: | 2013-11-11T00:00:00 |
| db: | PACKETSTORM | id: | 130527 | date: | 2015-02-25T17:30:18 |
| db: | EDBNET | id: | 80134 | date: | 2015-02-25T00:00:00 |