Vulnerability CVE-2009-2119 - CERT Civis.Net

Vulnerability Name:

CVE-2009-2119 (CCN-51064)

Assigned:

2009-06-11

Published:

2009-06-11

Updated:

2018-10-10

Summary:

Cross-site scripting (XSS) vulnerability in the login interface (my.logon.php3) in F5 FirePass SSL VPN 5.5 through 5.5.2 and 6.0 through 6.0.3 allows remote attackers to inject arbitrary web script or HTML via a base64-encoded xcho parameter.

CVSS v3 Severity:

5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): Low Availibility (A): None

CVSS v2 Severity:

4.3 Medium (CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N)
3.7 Low (Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N/E:H/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Medium Authentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): Partial Availibility (A): None

4.3 Medium (CCN CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N)
3.7 Low (CCN Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N/E:H/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Medium Athentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): Partial Availibility (A): None

Vulnerability Type:

Vulnerability Consequences:

Gain Access

References:

Source: MITRE
Type: CNA
CVE-2009-2119

Source: OSVDB
Type: UNKNOWN
55040

Source: CCN
Type: SA35418
F5 FirePass Cross-Site Scripting Vulnerability

Source: SECUNIA
Type: Vendor Advisory
35418

Source: CCN
Type: SA35426
F5 FirePass 6 Cross-Site Scripting Vulnerability

Source: SECUNIA
Type: Vendor Advisory
35426

Source: CCN
Type: SECTRACK ID: 1022387
F5 FirePass Input Validation Flaw in Unspecified Password Fields Permits Cross-Site Scripting Attacks

Source: CCN
Type: OSVDB ID: 55040
F5 FirePass Login Page Password Field XSS

Source: BUGTRAQ
Type: UNKNOWN
20090611 F5 FirePass Cross-Site Scripting vulnerability

Source: BID
Type: UNKNOWN
35312

Source: CCN
Type: BID-35312
F5 Networks FirePass SSL VPN 'password' Field Cross-Site Scripting Vulnerability

Source: SECTRACK
Type: Patch
1022387

Source: VUPEN
Type: Patch, Vendor Advisory
ADV-2009-1570

Source: XF
Type: UNKNOWN
firepasssslvpn-unspecified-xss(51064)

Source: XF
Type: UNKNOWN
firepasssslvpn-unspecified-xss(51064)

Source: CCN
Type: F5 Networks Web site
FirePass SSL VPN Products

Source: CCN
Type: Fox-IT Web site
F5 FirePass Cross-Site Scripting vulnerability

Source: MISC
Type: Vendor Advisory
https://www.fox-it.com/nl/nieuws-en-events/nieuws/laatste-nieuws/nieuwsartikel/f5-firepass-cross-site-scripting-vulnerability/106

Source: MISC
Type: UNKNOWN
https://www.fox-it.com/uploads/pdf/advisory_xss_f5_firepass.pdf

Vulnerable Configuration:

Configuration 1:

cpe:/h:f5:firepass_ssl_vpn:5.5:*:*:*:*:*:*:*

OR cpe:/h:f5:firepass_ssl_vpn:5.5.1:*:*:*:*:*:*:*

OR cpe:/h:f5:firepass_ssl_vpn:5.5.2:*:*:*:*:*:*:*

OR cpe:/h:f5:firepass_ssl_vpn:6.0:*:*:*:*:*:*:*

OR cpe:/h:f5:firepass_ssl_vpn:6.0.1:*:*:*:*:*:*:*

OR cpe:/h:f5:firepass_ssl_vpn:6.0.2:*:*:*:*:*:*:*

OR cpe:/h:f5:firepass_ssl_vpn:6.0.3:*:*:*:*:*:*:*

Configuration CCN 1:

cpe:/a:f5:firepass:6.0.2:*:*:*:*:*:*:*

OR cpe:/a:f5:firepass:6.0.1:*:*:*:*:*:*:*

OR cpe:/h:f5:firepass:5.5.2:*:*:*:*:*:*:*

OR cpe:/h:f5:firepass:6.0:*:*:*:*:*:*:*

OR cpe:/h:f5:firepass:5.5:*:*:*:*:*:*:*

OR cpe:/h:f5:firepass:5.5.1:*:*:*:*:*:*:*

OR cpe:/a:f5:firepass:6.0.3:*:*:*:*:*:*:*

Denotes that component is vulnerable