Vulnerabilities > CVE-2018-1247 - XXE vulnerability in RSA Authentication Manager
Attack vector
LOCAL Attack complexity
LOW Privileges required
NONE Confidentiality impact
HIGH Integrity impact
NONE Availability impact
HIGH Summary
RSA Authentication Manager Security Console, version 8.3 and earlier, contains a XML External Entity (XXE) vulnerability. This could potentially allow admin users to cause a denial of service or extract server data via injecting a maliciously crafted DTD in an XML file submitted to the application.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 19 |
Common Weakness Enumeration (CWE)
Exploit-Db
description | RSA Authentication Manager 8.2.1.4.0-build1394922 / < 8.3 P1 - XML External Entity Injection / Cross-Site Flashing / DOM Cross-Site Scripting. CVE-2018-12... |
file | exploits/java/webapps/44634.txt |
id | EDB-ID:44634 |
last seen | 2018-05-24 |
modified | 2018-05-16 |
platform | java |
port | |
published | 2018-05-16 |
reporter | Exploit-DB |
source | https://www.exploit-db.com/download/44634/ |
title | RSA Authentication Manager 8.2.1.4.0-build1394922 / < 8.3 P1 - XML External Entity Injection / Cross-Site Flashing / DOM Cross-Site Scripting |
type | webapps |
Nessus
NASL family | CGI abuses |
NASL id | EMC_RSA_AM_8_3_P1.NASL |
description | The version of EMC RSA Authentication Manager running on the remote host is prior to 8.3 Patch 1 (8.3.0.1). It is, therefore affected by the following vulnerabilities: - A flaw exists with the Security Console due to improper parsing of XML data. An authenticated remote attacker, with a specifically crafted XML data, could potentially cause a denial of service or access sensitive information. (CVE-2018-1247) - A flaw exists with the Security Console, Operation Console and Self-Service Console due to improper sanitization of input when handling specially crafted requests. A context-dependent attacker could inject custom http headers, potentially poisoning the http cache and redirecting users. (CVE-2018-1248) |
last seen | 2020-06-01 |
modified | 2020-06-02 |
plugin id | 109683 |
published | 2018-05-10 |
reporter | This script is Copyright (C) 2018-2019 and is owned by Tenable, Inc. or an Affiliate thereof. |
source | https://www.tenable.com/plugins/nessus/109683 |
title | EMC RSA Authentication Manager < 8.3 Patch 1 Multiple Vulnerabilities (DSA-2018-086) |
code |
|
Packetstorm
data source | https://packetstormsecurity.com/files/download/147666/SA-20180516-0.txt |
id | PACKETSTORM:147666 |
last seen | 2018-05-17 |
published | 2018-05-16 |
reporter | Mantas Juskauskas |
source | https://packetstormsecurity.com/files/147666/RSA-Authentication-Manager-XML-Injection-Cross-Site-Scripting.html |
title | RSA Authentication Manager XML Injection / Cross Site Scripting |
References
- http://seclists.org/fulldisclosure/2018/May/18
- http://seclists.org/fulldisclosure/2018/May/18
- http://www.securityfocus.com/bid/104107
- http://www.securityfocus.com/bid/104107
- http://www.securitytracker.com/id/1040835
- http://www.securitytracker.com/id/1040835
- https://www.exploit-db.com/exploits/44634/
- https://www.exploit-db.com/exploits/44634/