Details of VAR-201208-0356

ID

VAR-201208-0356

CVE

CVE-2012-2984

TITLE

Websense Content Gateway XSS vulnerabilities

Trust: 0.8

sources: CERT/CC: VU#318779

DESCRIPTION

Multiple cross-site scripting (XSS) vulnerabilities in monitor/m_overview.ink in Websense Content Gateway before 7.7.3 allow remote attackers to inject arbitrary web script or HTML via the (1) menu or (2) item parameter. As a result, denial of service ( DoS ) Attacks, information leaks, privilege escalation, etc. may occur. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may allow the attacker to steal cookie-based authentication credentials and launch other attacks. ---------------------------------------------------------------------- The new Secunia CSI 6.0 is now available in beta! Seamless integration with your existing security solutions Sign-up to become a Beta tester: http://secunia.com/csi6beta ---------------------------------------------------------------------- TITLE: Websense Content Gateway "menu" Cross-Site Scripting Vulnerability SECUNIA ADVISORY ID: SA50368 VERIFY ADVISORY: Secunia.com http://secunia.com/advisories/50368/ Customer Area (Credentials Required) https://ca.secunia.com/?page=viewadvisory&vuln_id=50368 RELEASE DATE: 2012-08-24 DISCUSS ADVISORY: http://secunia.com/advisories/50368/#comments AVAILABLE ON SITE AND IN CUSTOMER AREA: * Last Update * Popularity * Comments * Criticality Level * Impact * Where * Solution Status * Operating System / Software * CVE Reference(s) http://secunia.com/advisories/50368/ ONLY AVAILABLE IN CUSTOMER AREA: * Authentication Level * Report Reliability * Secunia PoC * Secunia Analysis * Systems Affected * Approve Distribution * Remediation Status * Secunia CVSS Score * CVSS https://ca.secunia.com/?page=viewadvisory&vuln_id=50368 ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI: * AUTOMATED SCANNING http://secunia.com/vulnerability_scanning/personal/ http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/ DESCRIPTION: A vulnerability has been reported in Websense Content Gateway, which can be exploited by malicious people to conduct cross-site scripting attacks. Input passed via the "menu" parameter to monitor/m_overview.ink is not properly sanitised before being returned to the user. The vulnerability is reported in versions prior to 7.7.3. SOLUTION: No official solution is currently available. Reportedly the vendor is planning the release of a fixed version 7.7.3 in December 2012. PROVIDED AND/OR DISCOVERED BY: US-CERT credits Steven Sim Kok Leong. ORIGINAL ADVISORY: US-CERT: http://www.kb.cert.org/vuls/id/318779 OTHER REFERENCES: Further details available in Customer Area: http://secunia.com/vulnerability_intelligence/ DEEP LINKS: Further details available in Customer Area: http://secunia.com/vulnerability_intelligence/ EXTENDED DESCRIPTION: Further details available in Customer Area: http://secunia.com/vulnerability_intelligence/ EXTENDED SOLUTION: Further details available in Customer Area: http://secunia.com/vulnerability_intelligence/ EXPLOIT: Further details available in Customer Area: http://secunia.com/vulnerability_intelligence/ ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org ----------------------------------------------------------------------

Trust: 2.79

sources: NVD: CVE-2012-2984 // CERT/CC: VU#318779 // JVNDB: JVNDB-2012-003869 // BID: 55194 // VULHUB: VHN-56265 // PACKETSTORM: 115871

AFFECTED PRODUCTS

vendor:	websense	model:	content content gateway	scope:	lte	version:	7.7	Trust: 1.0
vendor:	web sense	model:	websense content gateway	scope:	-	version:	-	Trust: 0.8
vendor:	websense	model:	content content gateway	scope:	eq	version:	7.7	Trust: 0.6

sources: JVNDB: JVNDB-2012-003869 // CNNVD: CNNVD-201208-458 // NVD: CVE-2012-2984

CVSS

SEVERITY

CVSSV2

CVSSV3

NVD:	CVE-2012-2984
value:	MEDIUM
Trust: 1.6
nvd@nist.gov:	CVE-2012-2984
value:	MEDIUM
Trust: 1.0
CNNVD:	CNNVD-201208-458
value:	MEDIUM
Trust: 0.6
VULHUB:	VHN-56265
value:	MEDIUM
Trust: 0.1

nvd@nist.gov:	CVE-2012-2984
severity:	MEDIUM
baseScore:	4.3
vectorString:	AV:N/AC:M/AU:N/C:N/I:P/A:N
accessVector:	NETWORK
accessComplexity:	MEDIUM
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	PARTIAL
availabilityImpact:	NONE
exploitabilityScore:	8.6
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.8
NVD:	CVE-2012-2984
severity:	MEDIUM
baseScore:	4.9
vectorString:	NONE
accessVector:	NETWORK
accessComplexity:	MEDIUM
authentication:	SINGLE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	NONE
exploitabilityScore:	6.8
impactScore:	4.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.8
VULHUB:	VHN-56265
severity:	MEDIUM
baseScore:	4.3
vectorString:	AV:N/AC:M/AU:N/C:N/I:P/A:N
accessVector:	NETWORK
accessComplexity:	MEDIUM
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	PARTIAL
availabilityImpact:	NONE
exploitabilityScore:	8.6
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

sources: CERT/CC: VU#318779 // VULHUB: VHN-56265 // JVNDB: JVNDB-2012-003869 // CNNVD: CNNVD-201208-458 // NVD: CVE-2012-2984

PROBLEMTYPE DATA

problemtype:

CWE-79

Trust: 1.9

sources: VULHUB: VHN-56265 // JVNDB: JVNDB-2012-003869 // NVD: CVE-2012-2984

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201208-458

TYPE

xss

Trust: 0.7

sources: PACKETSTORM: 115871 // CNNVD: CNNVD-201208-458

CONFIGURATIONS

sources: JVNDB: JVNDB-2012-003869

EXPLOIT AVAILABILITY

sources: CERT/CC: VU#318779 // VULHUB: VHN-56265

PATCH

title:

Websense Content Gateway

url:

http://www.websense.com/content/support/library/deployctr/v76/dic_wcg.aspx

Trust: 0.8

sources: JVNDB: JVNDB-2012-003869

EXTERNAL IDS

db:	CERT/CC	id:	VU#318779	Trust: 3.7
db:	NVD	id:	CVE-2012-2984	Trust: 2.8
db:	SECUNIA	id:	50368	Trust: 1.9
db:	BID	id:	55194	Trust: 1.0
db:	JVNDB	id:	JVNDB-2012-003869	Trust: 0.8
db:	CNNVD	id:	CNNVD-201208-458	Trust: 0.7
db:	EXPLOIT-DB	id:	37671	Trust: 0.1
db:	VULHUB	id:	VHN-56265	Trust: 0.1
db:	PACKETSTORM	id:	115871	Trust: 0.1

sources: CERT/CC: VU#318779 // VULHUB: VHN-56265 // BID: 55194 // JVNDB: JVNDB-2012-003869 // PACKETSTORM: 115871 // CNNVD: CNNVD-201208-458 // NVD: CVE-2012-2984

REFERENCES

url:	http://www.kb.cert.org/vuls/id/318779	Trust: 2.9
url:	http://secunia.com/advisories/50368	Trust: 1.7
url:	https://www.websense.com/content/home.aspx	Trust: 1.1
url:	http://cwe.mitre.org/data/definitions/79.html	Trust: 0.8
url:	http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2012-2984	Trust: 0.8
url:	http://jvn.jp/cert/jvnvu318779	Trust: 0.8
url:	http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2012-2984	Trust: 0.8
url:	http://www.securityfocus.com/bid/55194	Trust: 0.6
url:	http://secunia.com/vulnerability_intelligence/	Trust: 0.1
url:	http://secunia.com/advisories/secunia_security_advisories/	Trust: 0.1
url:	http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/	Trust: 0.1
url:	http://secunia.com/csi6beta	Trust: 0.1
url:	https://ca.secunia.com/?page=viewadvisory&vuln_id=50368	Trust: 0.1
url:	http://secunia.com/advisories/50368/#comments	Trust: 0.1
url:	http://secunia.com/vulnerability_scanning/personal/	Trust: 0.1
url:	http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org	Trust: 0.1
url:	http://secunia.com/advisories/50368/	Trust: 0.1
url:	http://secunia.com/advisories/about_secunia_advisories/	Trust: 0.1

sources: CERT/CC: VU#318779 // VULHUB: VHN-56265 // BID: 55194 // JVNDB: JVNDB-2012-003869 // PACKETSTORM: 115871 // CNNVD: CNNVD-201208-458 // NVD: CVE-2012-2984

CREDITS

Steven Sim Kok Leong

Trust: 0.9

sources: BID: 55194 // CNNVD: CNNVD-201208-458

SOURCES

db:	CERT/CC	id:	VU#318779
db:	VULHUB	id:	VHN-56265
db:	BID	id:	55194
db:	JVNDB	id:	JVNDB-2012-003869
db:	PACKETSTORM	id:	115871
db:	CNNVD	id:	CNNVD-201208-458
db:	NVD	id:	CVE-2012-2984

LAST UPDATE DATE

2025-04-11T22:53:39.448000+00:00

SOURCES UPDATE DATE

db:	CERT/CC	id:	VU#318779	date:	2012-08-27T00:00:00
db:	VULHUB	id:	VHN-56265	date:	2013-03-22T00:00:00
db:	BID	id:	55194	date:	2012-08-23T00:00:00
db:	JVNDB	id:	JVNDB-2012-003869	date:	2012-08-29T00:00:00
db:	CNNVD	id:	CNNVD-201208-458	date:	2012-08-27T00:00:00
db:	NVD	id:	CVE-2012-2984	date:	2025-04-11T00:51:21.963

SOURCES RELEASE DATE

db:	CERT/CC	id:	VU#318779	date:	2012-08-23T00:00:00
db:	VULHUB	id:	VHN-56265	date:	2012-08-24T00:00:00
db:	BID	id:	55194	date:	2012-08-23T00:00:00
db:	JVNDB	id:	JVNDB-2012-003869	date:	2012-08-27T00:00:00
db:	PACKETSTORM	id:	115871	date:	2012-08-24T05:43:48
db:	CNNVD	id:	CNNVD-201208-458	date:	2012-08-27T00:00:00
db:	NVD	id:	CVE-2012-2984	date:	2012-08-24T20:55:00.770