Details of VAR-201111-0185

ID

VAR-201111-0185

CVE

CVE-2011-4436

TITLE

Dell KACE K2000 Appliance contains multiple reflected cross-site scripting vulnerabilities

Trust: 0.8

sources: CERT/CC: VU#193529

DESCRIPTION

Multiple cross-site scripting (XSS) vulnerabilities in the administrative web interface on the Dell KACE K2000 System Deployment Appliance allow remote attackers to inject arbitrary web script or HTML via unspecified vectors. Dell Provided by KACE K2000 System Deployment Appliance Contains a cross-site scripting vulnerability. ---------------------------------------------------------------------- Ovum says ad hoc tools are out-dated. The best practice approach? Fast vulnerability intelligence, threat handling, and setup in one tool. Read the new report on the Secunia VIM: http://secunia.com/products/corporate/vim/ovum_2011_request/ ---------------------------------------------------------------------- TITLE: Dell KACE K2000 System Deployment Appliance Security Bypass and Cross-Site Scripting SECUNIA ADVISORY ID: SA46796 VERIFY ADVISORY: Secunia.com http://secunia.com/advisories/46796/ Customer Area (Credentials Required) https://ca.secunia.com/?page=viewadvisory&vuln_id=46796 RELEASE DATE: 2011-11-09 DISCUSS ADVISORY: http://secunia.com/advisories/46796/#comments AVAILABLE ON SITE AND IN CUSTOMER AREA: * Last Update * Popularity * Comments * Criticality Level * Impact * Where * Solution Status * Operating System / Software * CVE Reference(s) http://secunia.com/advisories/46796/ ONLY AVAILABLE IN CUSTOMER AREA: * Authentication Level * Report Reliability * Secunia PoC * Secunia Analysis * Systems Affected * Approve Distribution * Remediation Status * Secunia CVSS Score * CVSS https://ca.secunia.com/?page=viewadvisory&vuln_id=46796 ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI: * AUTOMATED SCANNING http://secunia.com/vulnerability_scanning/personal/ http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/ DESCRIPTION: A security issue and some vulnerabilities have been reported in Dell KACE K2000 System Deployment Appliance, which can be exploited by malicious people to bypass certain security restrictions and conduct cross-site scripting attacks. 2) Certain unspecified input is not properly sanitised before being returned to the user. This can be exploited to execute arbitrary HTML and script code in a user's browser session in context of an affected site. SOLUTION: Restrict access to trusted hosts only. Filter malicious characters and character sequences using a proxy. PROVIDED AND/OR DISCOVERED BY: US-CERT credits Tenable Network Security. ORIGINAL ADVISORY: KACE: http://www.kace.com/support/kb/index.php?action=artikel&id=1120 US-CERT (VU#135606, VU#193529): http://www.kb.cert.org/vuls/id/135606 http://www.kb.cert.org/vuls/id/193529 OTHER REFERENCES: Further details available in Customer Area: http://secunia.com/vulnerability_intelligence/ DEEP LINKS: Further details available in Customer Area: http://secunia.com/vulnerability_intelligence/ EXTENDED DESCRIPTION: Further details available in Customer Area: http://secunia.com/vulnerability_intelligence/ EXTENDED SOLUTION: Further details available in Customer Area: http://secunia.com/vulnerability_intelligence/ EXPLOIT: Further details available in Customer Area: http://secunia.com/vulnerability_intelligence/ ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org ----------------------------------------------------------------------

Trust: 3.24

sources: NVD: CVE-2011-4436 // CERT/CC: VU#193529 // CERT/CC: VU#135606 // JVNDB: JVNDB-2011-003061 // VULHUB: VHN-52381 // PACKETSTORM: 106805

AFFECTED PRODUCTS

vendor:	dell computer	model:	-	scope:	-	version:	-	Trust: 1.6
vendor:	dell	model:	kace k2000 systems deployment appliance	scope:	-	version:	-	Trust: 1.4
vendor:	dell	model:	kace k2000 systems deployment appliance	scope:	eq	version:	*	Trust: 1.0

sources: CERT/CC: VU#193529 // CERT/CC: VU#135606 // JVNDB: JVNDB-2011-003061 // CNNVD: CNNVD-201111-245 // NVD: CVE-2011-4436

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2011-4436
value:	LOW
Trust: 1.0
CARNEGIE MELLON:	VU#193529
value:	0.75
Trust: 0.8
CARNEGIE MELLON:	VU#135606
value:	33.84
Trust: 0.8
NVD:	CVE-2011-4436
value:	LOW
Trust: 0.8
CNNVD:	CNNVD-201111-245
value:	LOW
Trust: 0.6
VULHUB:	VHN-52381
value:	LOW
Trust: 0.1

nvd@nist.gov:	CVE-2011-4436
severity:	LOW
baseScore:	3.5
vectorString:	AV:N/AC:M/AU:S/C:N/I:P/A:N
accessVector:	NETWORK
accessComplexity:	MEDIUM
authentication:	SINGLE
confidentialityImpact:	NONE
integrityImpact:	PARTIAL
availabilityImpact:	NONE
exploitabilityScore:	6.8
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.8
VULHUB:	VHN-52381
severity:	LOW
baseScore:	3.5
vectorString:	AV:N/AC:M/AU:S/C:N/I:P/A:N
accessVector:	NETWORK
accessComplexity:	MEDIUM
authentication:	SINGLE
confidentialityImpact:	NONE
integrityImpact:	PARTIAL
availabilityImpact:	NONE
exploitabilityScore:	6.8
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

sources: CERT/CC: VU#193529 // CERT/CC: VU#135606 // VULHUB: VHN-52381 // JVNDB: JVNDB-2011-003061 // CNNVD: CNNVD-201111-245 // NVD: CVE-2011-4436

PROBLEMTYPE DATA

problemtype:

CWE-79

Trust: 1.9

sources: VULHUB: VHN-52381 // JVNDB: JVNDB-2011-003061 // NVD: CVE-2011-4436

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201111-245

TYPE

xss

Trust: 0.7

sources: PACKETSTORM: 106805 // CNNVD: CNNVD-201111-245

CONFIGURATIONS

sources: JVNDB: JVNDB-2011-003061

PATCH

title:

K2000 Appliance Security Recommended Practices

url:

http://www.kace.com/support/kb/index.php?action=artikel&id=1120

Trust: 0.8

sources: JVNDB: JVNDB-2011-003061

EXTERNAL IDS

db:	CERT/CC	id:	VU#193529	Trust: 3.4
db:	NVD	id:	CVE-2011-4436	Trust: 2.5
db:	CERT/CC	id:	VU#135606	Trust: 0.9
db:	JVNDB	id:	JVNDB-2011-003061	Trust: 0.8
db:	CNNVD	id:	CNNVD-201111-245	Trust: 0.7
db:	SECUNIA	id:	46796	Trust: 0.2
db:	VULHUB	id:	VHN-52381	Trust: 0.1
db:	PACKETSTORM	id:	106805	Trust: 0.1

sources: CERT/CC: VU#193529 // CERT/CC: VU#135606 // VULHUB: VHN-52381 // JVNDB: JVNDB-2011-003061 // PACKETSTORM: 106805 // CNNVD: CNNVD-201111-245 // NVD: CVE-2011-4436

REFERENCES

url:	http://www.kace.com/support/kb/index.php?action=artikel&id=1120&artlang=en	Trust: 3.2
url:	http://www.kb.cert.org/vuls/id/193529	Trust: 2.6
url:	about vulnerability notes	Trust: 1.6
url:	contact us about this vulnerability	Trust: 1.6
url:	provide a vendor statement	Trust: 1.6
url:	http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2011-4436	Trust: 0.8
url:	http://jvn.jp/cert/jvnvu193529	Trust: 0.8
url:	http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2011-4436	Trust: 0.8
url:	http://www.kace.com/support/kb/index.php?action=artikel&id=1120&artlang=en	Trust: 0.1
url:	http://secunia.com/advisories/46796/#comments	Trust: 0.1
url:	https://ca.secunia.com/?page=viewadvisory&vuln_id=46796	Trust: 0.1
url:	http://secunia.com/vulnerability_intelligence/	Trust: 0.1
url:	http://secunia.com/advisories/secunia_security_advisories/	Trust: 0.1
url:	http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/	Trust: 0.1
url:	http://secunia.com/vulnerability_scanning/personal/	Trust: 0.1
url:	http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org	Trust: 0.1
url:	http://secunia.com/advisories/46796/	Trust: 0.1
url:	http://www.kace.com/support/kb/index.php?action=artikel&id=1120	Trust: 0.1
url:	http://www.kb.cert.org/vuls/id/135606	Trust: 0.1
url:	http://secunia.com/products/corporate/vim/ovum_2011_request/	Trust: 0.1
url:	http://secunia.com/advisories/about_secunia_advisories/	Trust: 0.1

sources: CERT/CC: VU#193529 // CERT/CC: VU#135606 // VULHUB: VHN-52381 // JVNDB: JVNDB-2011-003061 // PACKETSTORM: 106805 // CNNVD: CNNVD-201111-245 // NVD: CVE-2011-4436

CREDITS

Secunia

Trust: 0.1

sources: PACKETSTORM: 106805

SOURCES

db:	CERT/CC	id:	VU#193529
db:	CERT/CC	id:	VU#135606
db:	VULHUB	id:	VHN-52381
db:	JVNDB	id:	JVNDB-2011-003061
db:	PACKETSTORM	id:	106805
db:	CNNVD	id:	CNNVD-201111-245
db:	NVD	id:	CVE-2011-4436

LAST UPDATE DATE

2025-04-11T23:08:53.018000+00:00

SOURCES UPDATE DATE

db:	CERT/CC	id:	VU#193529	date:	2011-11-08T00:00:00
db:	CERT/CC	id:	VU#135606	date:	2015-09-30T00:00:00
db:	VULHUB	id:	VHN-52381	date:	2011-11-14T00:00:00
db:	JVNDB	id:	JVNDB-2011-003061	date:	2011-11-28T00:00:00
db:	CNNVD	id:	CNNVD-201111-245	date:	2011-11-14T00:00:00
db:	NVD	id:	CVE-2011-4436	date:	2025-04-11T00:51:21.963

SOURCES RELEASE DATE

db:	CERT/CC	id:	VU#193529	date:	2011-11-08T00:00:00
db:	CERT/CC	id:	VU#135606	date:	2011-11-08T00:00:00
db:	VULHUB	id:	VHN-52381	date:	2011-11-12T00:00:00
db:	JVNDB	id:	JVNDB-2011-003061	date:	2011-11-28T00:00:00
db:	PACKETSTORM	id:	106805	date:	2011-11-09T06:29:15
db:	CNNVD	id:	CNNVD-201111-245	date:	2011-11-14T00:00:00
db:	NVD	id:	CVE-2011-4436	date:	2011-11-12T00:55:01.193