Sign-up

ID

VAR-200712-0411


CVE

CVE-2007-5582


TITLE

Cisco CiscoWorks Server (CS) Login page cross-site scripting vulnerability

Trust: 0.8

sources: JVNDB: JVNDB-2007-002809

DESCRIPTION

Cross-site scripting (XSS) vulnerability in the login page in Cisco CiscoWorks Server (CS), possibly 2.6 and earlier, when using CiscoWorks Common Services 3.0.x and 3.1, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. CiscoWorks is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may help the attacker steal cookie-based authentication credentials and launch other attacks. CiscoWorks 2.6 is vulnerable; other versions may also be affected. ---------------------------------------------------------------------- 2003: 2,700 advisories published 2004: 3,100 advisories published 2005: 4,600 advisories published 2006: 5,300 advisories published How do you know which Secunia advisories are important to you? The Secunia Vulnerability Intelligence Solutions allows you to filter and structure all the information you need, so you can address issues effectively. Get a free trial of the Secunia Vulnerability Intelligence Solutions: http://corporate.secunia.com/how_to_buy/38/vi/?ref=secadv ---------------------------------------------------------------------- TITLE: CiscoWorks Common Services Cross-Site Scripting Vulnerability SECUNIA ADVISORY ID: SA27902 VERIFY ADVISORY: http://secunia.com/advisories/27902/ CRITICAL: Less critical IMPACT: Cross Site Scripting WHERE: >From remote SOFTWARE: CiscoWorks Common Services Software 3.x http://secunia.com/product/6330/ DESCRIPTION: Dave Lewis has reported a vulnerability in CiscoWorks Common Services, which can be exploited by malicious people to conduct cross-site scripting attacks. Unspecified input passed to the CiscoWorks Server login page is not properly sanitised before being returned to the user. The vulnerability is reported in CiscoWorks Common Services 3.0.x and 3.1 for both Solaris and Windows systems. SOLUTION: Apply vendor patch (registered customers). http://www.cisco.com/pcgi-bin/tablebuild.pl/cw2000-cd-one PROVIDED AND/OR DISCOVERED BY: Dave Lewis ORIGINAL ADVISORY: Cisco: http://www.cisco.com/warp/public/707/cisco-sr-20071205-cw.shtml Liquidmatrix: http://www.liquidmatrix.org/blog/2007/12/05/advisory-cross-site-scripting-in-ciscoworks/ ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org ----------------------------------------------------------------------

Trust: 2.07

sources: NVD: CVE-2007-5582 // JVNDB: JVNDB-2007-002809 // BID: 26708 // VULHUB: VHN-28944 // PACKETSTORM: 61551

AFFECTED PRODUCTS

vendor:ciscomodel:ciscoworks serverscope:lteversion:2.6

Trust: 1.8

vendor:ciscomodel:ciscoworks common servicesscope:eqversion:3.1

Trust: 0.3

vendor:ciscomodel:ciscoworks common servicesscope:eqversion:3.0

Trust: 0.3

vendor:ciscomodel:ciscoworksscope:eqversion:2.6

Trust: 0.3

sources: BID: 26708 // JVNDB: JVNDB-2007-002809 // NVD: CVE-2007-5582

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2007-5582
value: MEDIUM

Trust: 1.0

NVD: CVE-2007-5582
value: MEDIUM

Trust: 0.8

CNNVD: CNNVD-200712-411
value: MEDIUM

Trust: 0.6

VULHUB: VHN-28944
value: MEDIUM

Trust: 0.1

nvd@nist.gov: CVE-2007-5582
severity: MEDIUM
baseScore: 4.3
vectorString: AV:N/AC:M/AU:N/C:N/I:P/A:N
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: NONE
integrityImpact: PARTIAL
availabilityImpact: NONE
exploitabilityScore: 8.6
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

VULHUB: VHN-28944
severity: MEDIUM
baseScore: 4.3
vectorString: AV:N/AC:M/AU:N/C:N/I:P/A:N
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: NONE
integrityImpact: PARTIAL
availabilityImpact: NONE
exploitabilityScore: 8.6
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

sources: VULHUB: VHN-28944 // JVNDB: JVNDB-2007-002809 // CNNVD: CNNVD-200712-411 // NVD: CVE-2007-5582

PROBLEMTYPE DATA

problemtype:CWE-79

Trust: 1.9

sources: VULHUB: VHN-28944 // JVNDB: JVNDB-2007-002809 // NVD: CVE-2007-5582

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-200712-411

TYPE

xss

Trust: 0.7

sources: PACKETSTORM: 61551 // CNNVD: CNNVD-200712-411

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2007-002809

PATCH
title:Document ID: 605url:http://tools.cisco.com/security/center/content/CiscoSecurityResponse/cisco-sr-20071205-cw
Trust: 0.8
title:Cisco CiscoWorks Server Fixes for cross-site scripting vulnerabilitiesurl:http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=175103
Trust: 0.6
sources:
            
            
            JVNDB: JVNDB-2007-002809 // 
            
            
            
            CNNVD: CNNVD-200712-411

EXTERNAL IDS
db:NVDid:CVE-2007-5582
Trust: 2.8
db:BIDid:26708
Trust: 2.0
db:SECUNIAid:27902
Trust: 1.8
db:VUPENid:ADV-2007-4102
Trust: 1.7
db:SECTRACKid:1019043
Trust: 1.7
db:SREASONid:3449
Trust: 1.7
db:JVNDBid:JVNDB-2007-002809
Trust: 0.8
db:BUGTRAQid:20071205 ADVISORY: CROSS SITE SCRIPTING IN CISCOWORKS
Trust: 0.6
db:XFid:38862
Trust: 0.6
db:CISCOid:20071205 CISCOWORKS SERVER XSS VULNERABILITY
Trust: 0.6
db:CNNVDid:CNNVD-200712-411
Trust: 0.6
db:VULHUBid:VHN-28944
Trust: 0.1
db:PACKETSTORMid:61551
Trust: 0.1
sources:
            
            
            VULHUB: VHN-28944 // 
            
            
            
            BID: 26708 // 
            
            
            
            JVNDB: JVNDB-2007-002809 // 
            
            
            
            PACKETSTORM: 61551 // 
            
            
            
            CNNVD: CNNVD-200712-411 // 
            
            
            
            NVD: CVE-2007-5582

REFERENCES
url:http://www.cisco.com/warp/public/707/cisco-sr-20071205-cw.shtml
Trust: 2.1
url:http://www.liquidmatrix.org/blog/2007/12/05/advisory-cross-site-scripting-in-ciscoworks/
Trust: 1.8
url:http://www.securityfocus.com/bid/26708
Trust: 1.7
url:http://securitytracker.com/id?1019043
Trust: 1.7
url:http://secunia.com/advisories/27902
Trust: 1.7
url:http://securityreason.com/securityalert/3449
Trust: 1.7
url:http://www.vupen.com/english/advisories/2007/4102
Trust: 1.7
url:http://tools.cisco.com/support/bugtoolkit/search/getbugdetails.do?method=fetchbugdetails&bugid=cscsk69289
Trust: 1.6
url:http://www.securityfocus.com/archive/1/484609/100/0/threaded
Trust: 1.1
url:https://exchange.xforce.ibmcloud.com/vulnerabilities/38862
Trust: 1.1
url:http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2007-5582
Trust: 0.8
url:http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2007-5582
Trust: 0.8
url:http://www.securityfocus.com/archive/1/archive/1/484609/100/0/threaded
Trust: 0.6
url:http://xforce.iss.net/xforce/xfdb/38862
Trust: 0.6
url:http://www.cisco.com
Trust: 0.3
url:/archive/1/484609
Trust: 0.3
url:http://tools.cisco.com/support/bugtoolkit/search/getbugdetails.do?method=fetchbugdetails&bugid=cscsk69289
Trust: 0.1
url:http://www.cisco.com/pcgi-bin/tablebuild.pl/cw2000-cd-one
Trust: 0.1
url:http://secunia.com/secunia_security_advisories/
Trust: 0.1
url:http://secunia.com/product/6330/
Trust: 0.1
url:http://secunia.com/advisories/27902/
Trust: 0.1
url:http://corporate.secunia.com/how_to_buy/38/vi/?ref=secadv
Trust: 0.1
url:http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org
Trust: 0.1
url:http://secunia.com/about_secunia_advisories/
Trust: 0.1
sources:
            
            
            VULHUB: VHN-28944 // 
            
            
            
            BID: 26708 // 
            
            
            
            JVNDB: JVNDB-2007-002809 // 
            
            
            
            PACKETSTORM: 61551 // 
            
            
            
            CNNVD: CNNVD-200712-411 // 
            
            
            
            NVD: CVE-2007-5582

CREDITS
Dave Lewis is credited with the discovery of this vulnerability.
Trust: 0.3
sources:
            
            
            BID: 26708

SOURCES
db:VULHUBid:VHN-28944
db:BIDid:26708
db:JVNDBid:JVNDB-2007-002809
db:PACKETSTORMid:61551
db:CNNVDid:CNNVD-200712-411
db:NVDid:CVE-2007-5582

LAST UPDATE DATE
2025-04-10T23:03:33.130000+00:00

SOURCES UPDATE DATE
db:VULHUBid:VHN-28944date:2018-10-15T00:00:00
db:BIDid:26708date:2007-12-06T00:22:00
db:JVNDBid:JVNDB-2007-002809date:2012-06-26T00:00:00
db:CNNVDid:CNNVD-200712-411date:2021-12-20T00:00:00
db:NVDid:CVE-2007-5582date:2025-04-09T00:30:58.490

SOURCES RELEASE DATE
db:VULHUBid:VHN-28944date:2007-12-15T00:00:00
db:BIDid:26708date:2007-12-05T00:00:00
db:JVNDBid:JVNDB-2007-002809date:2012-06-26T00:00:00
db:PACKETSTORMid:61551date:2007-12-07T16:22:07
db:CNNVDid:CNNVD-200712-411date:2007-12-14T00:00:00
db:NVDid:CVE-2007-5582date:2007-12-15T01:46:00