Sign-up

ID

VAR-201102-0365


CVE

CVE-2011-1034


TITLE

IBM Rational Build Forge Cross-Site Scripting Vulnerability

Trust: 1.0

sources: IVD: 7d7f75e1-463f-11e9-92ed-000c29342cb1 // IVD: 34e5e7e6-1fa1-11e6-abef-000c29c66e3d // CNVD: CNVD-2011-0454

DESCRIPTION

Cross-site scripting (XSS) vulnerability in the UI in IBM Rational Build Forge 7.0.2 allows remote attackers to inject arbitrary web script or HTML via the mod parameter to the fullcontrol program. NOTE: some of these details are obtained from third party information. IBM Rational Build Forge is an automated process execution software that helps customers build, test and publish automated software. Part of the input passed to fullcontrol/ is not properly filtered before returning to the user, and the attacker can exploit the vulnerability for arbitrary HTML and script code attacks to obtain sensitive information or hijack the target user session. This may allow the attacker to steal cookie-based authentication credentials and to launch other attacks. ---------------------------------------------------------------------- Secure your corporate defenses and reduce complexity in handling vulnerability threats with the new Secunia Vulnerability Intelligence Manager (VIM). Request a free trial: http://secunia.com/products/corporate/vim/ ---------------------------------------------------------------------- TITLE: IBM Rational Build Forge Cross-Site Scripting Vulnerability SECUNIA ADVISORY ID: SA43180 VERIFY ADVISORY: Secunia.com http://secunia.com/advisories/43180/ Customer Area (Credentials Required) https://ca.secunia.com/?page=viewadvisory&vuln_id=43180 RELEASE DATE: 2011-02-04 DISCUSS ADVISORY: http://secunia.com/advisories/43180/#comments AVAILABLE ON SITE AND IN CUSTOMER AREA: * Last Update * Popularity * Comments * Criticality Level * Impact * Where * Solution Status * Operating System / Software * CVE Reference(s) http://secunia.com/advisories/43180/ ONLY AVAILABLE IN CUSTOMER AREA: * Authentication Level * Report Reliability * Secunia PoC * Secunia Analysis * Systems Affected * Approve Distribution * Remediation Status * Secunia CVSS Score * CVSS https://ca.secunia.com/?page=viewadvisory&vuln_id=43180 ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI: * AUTOMATED SCANNING http://secunia.com/vulnerability_scanning/personal/ http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/ DESCRIPTION: A vulnerability has been reported in IBM Rational Build Forge, which can be exploited by malicious people to conduct cross-site scripting attacks. Certain input passed to fullcontrol/ is not properly sanitised before being returned to the user. The vulnerability is reported in version 7.02. SOLUTION: Apply APAR PM05187. PROVIDED AND/OR DISCOVERED BY: The vendor credits a customer. ORIGINAL ADVISORY: IBM (PM05187): http://www.ibm.com/support/docview.wss?uid=swg1PM05187 OTHER REFERENCES: Further details available in Customer Area: http://secunia.com/products/corporate/EVM/ DEEP LINKS: Further details available in Customer Area: http://secunia.com/products/corporate/EVM/ EXTENDED DESCRIPTION: Further details available in Customer Area: http://secunia.com/products/corporate/EVM/ EXTENDED SOLUTION: Further details available in Customer Area: http://secunia.com/products/corporate/EVM/ EXPLOIT: Further details available in Customer Area: http://secunia.com/products/corporate/EVM/ ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org ----------------------------------------------------------------------

Trust: 2.88

sources: NVD: CVE-2011-1034 // JVNDB: JVNDB-2010-003599 // CNVD: CNVD-2011-0454 // BID: 46125 // IVD: 7d7f75e1-463f-11e9-92ed-000c29342cb1 // IVD: 34e5e7e6-1fa1-11e6-abef-000c29c66e3d // PACKETSTORM: 98141

IOT TAXONOMY

category:['ICS']sub_category: -

Trust: 1.0

sources: IVD: 7d7f75e1-463f-11e9-92ed-000c29342cb1 // IVD: 34e5e7e6-1fa1-11e6-abef-000c29c66e3d // CNVD: CNVD-2011-0454

AFFECTED PRODUCTS

vendor:ibmmodel:rational build forgescope:eqversion:7.0.2

Trust: 2.4

vendor:ibmmodel:rational build forgescope:eqversion:7.x

Trust: 1.0

vendor:ibmmodel:rational build forgescope:eqversion:7.02

Trust: 0.3

sources: IVD: 7d7f75e1-463f-11e9-92ed-000c29342cb1 // IVD: 34e5e7e6-1fa1-11e6-abef-000c29c66e3d // CNVD: CNVD-2011-0454 // BID: 46125 // JVNDB: JVNDB-2010-003599 // CNNVD: CNNVD-201102-231 // NVD: CVE-2011-1034

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2011-1034
value: MEDIUM

Trust: 1.0

NVD: CVE-2011-1034
value: MEDIUM

Trust: 0.8

CNNVD: CNNVD-201102-231
value: MEDIUM

Trust: 0.6

IVD: 7d7f75e1-463f-11e9-92ed-000c29342cb1
value: HIGH

Trust: 0.2

IVD: 34e5e7e6-1fa1-11e6-abef-000c29c66e3d
value: LOW

Trust: 0.2

nvd@nist.gov: CVE-2011-1034
severity: MEDIUM
baseScore: 4.3
vectorString: AV:N/AC:M/AU:N/C:N/I:P/A:N
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: NONE
integrityImpact: PARTIAL
availabilityImpact: NONE
exploitabilityScore: 8.6
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

IVD: 7d7f75e1-463f-11e9-92ed-000c29342cb1
severity: HIGH
baseScore: 7.5
vectorString: AV:N/AC:L/AU:N/C:P/I:P/A:P
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: PARTIAL
availabilityImpact: PARTIAL
exploitabilityScore: 10.0
impactScore: 6.4
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.9 [IVD]

Trust: 0.2

IVD: 34e5e7e6-1fa1-11e6-abef-000c29c66e3d
severity: NONE
baseScore: NONE
vectorString: NONE
accessVector: NONE
accessComplexity: NONE
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: NONE
impactScore: NONE
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: UNKNOWN

Trust: 0.2

sources: IVD: 7d7f75e1-463f-11e9-92ed-000c29342cb1 // IVD: 34e5e7e6-1fa1-11e6-abef-000c29c66e3d // JVNDB: JVNDB-2010-003599 // CNNVD: CNNVD-201102-231 // NVD: CVE-2011-1034

PROBLEMTYPE DATA

problemtype:CWE-79

Trust: 1.8

sources: JVNDB: JVNDB-2010-003599 // NVD: CVE-2011-1034

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201102-231

TYPE

xss

Trust: 0.7

sources: PACKETSTORM: 98141 // CNNVD: CNNVD-201102-231

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2010-003599

PATCH
title:PM05187url:http://www.ibm.com/support/docview.wss?uid=swg1PM05187
Trust: 0.8
title:Patch for IBM Rational Build Forge Cross-Site Scripting Vulnerabilityurl:https://www.cnvd.org.cn/patchInfo/show/2821
Trust: 0.6
sources:
            
            
            CNVD: CNVD-2011-0454 // 
            
            
            
            JVNDB: JVNDB-2010-003599

EXTERNAL IDS
db:NVDid:CVE-2011-1034
Trust: 2.7
db:SECUNIAid:43180
Trust: 2.3
db:BIDid:46125
Trust: 1.9
db:SECTRACKid:1025019
Trust: 1.6
db:VUPENid:ADV-2011-0276
Trust: 1.6
db:OSVDBid:70763
Trust: 1.6
db:CNVDid:CNVD-2011-0454
Trust: 1.0
db:JVNDBid:JVNDB-2010-003599
Trust: 0.8
db:AIXAPARid:PM05187
Trust: 0.6
db:CNNVDid:CNNVD-201102-231
Trust: 0.6
db:IVDid:7D7F75E1-463F-11E9-92ED-000C29342CB1
Trust: 0.2
db:IVDid:34E5E7E6-1FA1-11E6-ABEF-000C29C66E3D
Trust: 0.2
db:PACKETSTORMid:98141
Trust: 0.1
sources:
            
            
            IVD: 7d7f75e1-463f-11e9-92ed-000c29342cb1 // 
            
            
            
            IVD: 34e5e7e6-1fa1-11e6-abef-000c29c66e3d // 
            
            
            
            CNVD: CNVD-2011-0454 // 
            
            
            
            BID: 46125 // 
            
            
            
            JVNDB: JVNDB-2010-003599 // 
            
            
            
            PACKETSTORM: 98141 // 
            
            
            
            CNNVD: CNNVD-201102-231 // 
            
            
            
            NVD: CVE-2011-1034

REFERENCES
url:http://www.ibm.com/support/docview.wss?uid=swg1pm05187
Trust: 1.7
url:http://www.vupen.com/english/advisories/2011/0276
Trust: 1.6
url:http://www.securityfocus.com/bid/46125
Trust: 1.6
url:http://www.osvdb.org/70763
Trust: 1.6
url:http://securitytracker.com/id?1025019
Trust: 1.6
url:http://secunia.com/advisories/43180
Trust: 1.6
url:http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2011-1034
Trust: 0.8
url:http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2011-1034
Trust: 0.8
url:http://secunia.com/advisories/43180/
Trust: 0.7
url:http://www-306.ibm.com/software/awdtools/buildforge/
Trust: 0.3
url:http://www-01.ibm.com/support/docview.wss?uid=swg1pm05187
Trust: 0.3
url:http://secunia.com/products/corporate/evm/
Trust: 0.1
url:https://ca.secunia.com/?page=viewadvisory&vuln_id=43180
Trust: 0.1
url:http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/
Trust: 0.1
url:http://secunia.com/advisories/secunia_security_advisories/
Trust: 0.1
url:http://secunia.com/advisories/43180/#comments
Trust: 0.1
url:http://secunia.com/products/corporate/vim/
Trust: 0.1
url:http://secunia.com/vulnerability_scanning/personal/
Trust: 0.1
url:http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org
Trust: 0.1
url:http://secunia.com/advisories/about_secunia_advisories/
Trust: 0.1
sources:
            
            
            CNVD: CNVD-2011-0454 // 
            
            
            
            BID: 46125 // 
            
            
            
            JVNDB: JVNDB-2010-003599 // 
            
            
            
            PACKETSTORM: 98141 // 
            
            
            
            CNNVD: CNNVD-201102-231 // 
            
            
            
            NVD: CVE-2011-1034

CREDITS
The vendor reported this issue.
Trust: 0.9
sources:
            
            
            BID: 46125 // 
            
            
            
            CNNVD: CNNVD-201102-231

SOURCES
db:IVDid:7d7f75e1-463f-11e9-92ed-000c29342cb1
db:IVDid:34e5e7e6-1fa1-11e6-abef-000c29c66e3d
db:CNVDid:CNVD-2011-0454
db:BIDid:46125
db:JVNDBid:JVNDB-2010-003599
db:PACKETSTORMid:98141
db:CNNVDid:CNNVD-201102-231
db:NVDid:CVE-2011-1034

LAST UPDATE DATE
2025-04-11T23:05:54.417000+00:00

SOURCES UPDATE DATE
db:CNVDid:CNVD-2011-0454date:2011-02-05T00:00:00
db:BIDid:46125date:2011-02-16T06:29:00
db:JVNDBid:JVNDB-2010-003599date:2012-03-27T00:00:00
db:CNNVDid:CNNVD-201102-231date:2011-02-16T00:00:00
db:NVDid:CVE-2011-1034date:2025-04-11T00:51:21.963

SOURCES RELEASE DATE
db:IVDid:7d7f75e1-463f-11e9-92ed-000c29342cb1date:2011-02-05T00:00:00
db:IVDid:34e5e7e6-1fa1-11e6-abef-000c29c66e3ddate:2011-02-05T00:00:00
db:CNVDid:CNVD-2011-0454date:2011-02-05T00:00:00
db:BIDid:46125date:2011-01-30T00:00:00
db:JVNDBid:JVNDB-2010-003599date:2012-03-27T00:00:00
db:PACKETSTORMid:98141date:2011-02-03T05:38:00
db:CNNVDid:CNNVD-201102-231date:2011-02-16T00:00:00
db:NVDid:CVE-2011-1034date:2011-02-16T03:00:03.947