Vulnerability Name:

CVE-2009-3731 (CCN-54820)

Assigned:2009-12-15
Published:2009-12-15
Updated:2018-10-10
Summary:Multiple cross-site scripting (XSS) vulnerabilities in WebWorks Help 2.0 through 5.0 in VMware vCenter 4.0 before Update 1 Build 208156; VMware Server 2.0.2; VMware ESX 4.0; VMware Lab Manager 2.x; VMware vCenter Lab Manager 3.x and 4.x before 4.0.1; VMware Stage Manager 1.x before 4.0.1; WebWorks Publisher 6.x through 8.x; WebWorks Publisher 2003; and WebWorks ePublisher 9.0.x through 9.3, 2008.1 through 2008.4, and 2009.x before 2009.3 allow remote attackers to inject arbitrary web script or HTML via (1) wwhelp_entry.html, reachable through index.html and wwhsec.htm, (2) wwhelp/wwhimpl/api.htm, (3) wwhelp/wwhimpl/common/html/frameset.htm, (4) wwhelp/wwhimpl/common/scripts/switch.js, or (5) the window.opener component in wwhelp/wwhimpl/common/html/bookmark.htm, related to (a) unspecified parameters and (b) messages used in topic links for the bookmarking functionality.
CVSS v3 Severity:2.6 Low (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:N/I:L/A:N)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): High
Privileges Required (PR): Low
User Interaction (UI): Required
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): None
Integrity (I): Low
Availibility (A): None
CVSS v2 Severity:4.3 Medium (CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N)
3.7 Low (Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N/E:H/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Medium
Authentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): Partial
Availibility (A): None
3.5 Low (CCN CVSS v2 Vector: AV:N/AC:M/Au:S/C:N/I:P/A:N)
3.0 Low (CCN Temporal CVSS v2 Vector: AV:N/AC:M/Au:S/C:N/I:P/A:N/E:H/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Medium
Athentication (Au): Single_Instance
Impact Metrics:Confidentiality (C): None
Integrity (I): Partial
Availibility (A): None
Vulnerability Type:CWE-79
Vulnerability Consequences:Gain Access
References:Source: BUGTRAQ
Type: UNKNOWN
20091215 VMSA-2009-0017 VMware vCenter, ESX patch and vCenter Lab Manager releases address cross-site scripting issues

Source: MITRE
Type: CNA
CVE-2009-3731

Source: CCN
Type: VMSA-2009-0017
VMware vCenter, ESX patch and vCenter Lab Manager releases address cross-site scripting issues

Source: MLIST
Type: Vendor Advisory
[security-announce] 20091215 VMSA-2009-0017 VMware vCenter, ESX patch and vCenter Lab Manager releases address cross-site scripting issues

Source: CCN
Type: SA37460
VMware Products Update for Multiple Packages

Source: CCN
Type: SA37692
VMware vCenter Lab Manager WebWorks Help Cross-Site Scripting

Source: CCN
Type: SA38749
ePublisher WebWorks Help Cross-Site Scripting Vulnerabilities

Source: SECUNIA
Type: UNKNOWN
38749

Source: CCN
Type: SA38842
CA SiteMinder WebWorks Help Cross-Site Scripting Vulnerabilities

Source: SECUNIA
Type: UNKNOWN
38842

Source: CCN
Type: SECTRACK ID: 1023683
CA SiteMinder Input Validation Flaw in WebWorks Help Permits Cross-Site Scripting Attacks

Source: SECTRACK
Type: UNKNOWN
1023683

Source: OSVDB
Type: UNKNOWN
62738

Source: OSVDB
Type: UNKNOWN
62739

Source: OSVDB
Type: UNKNOWN
62740

Source: OSVDB
Type: UNKNOWN
62741

Source: OSVDB
Type: UNKNOWN
62742

Source: CCN
Type: OSVDB ID: 61049
VMware vCenter Lab Manager WebWorks Help Page wwhelp_entry.html XSS

Source: CCN
Type: OSVDB ID: 61305
VMware vCenter Lab Manager WebWorks Help Page wwhelp/wwhimpl/api.htm XSS

Source: CCN
Type: OSVDB ID: 61306
VMware vCenter Lab Manager WebWorks Help Page wwhelp/wwhimpl/common/html/frameset.htm XSS

Source: CCN
Type: OSVDB ID: 61307
VMware vCenter Lab Manager WebWorks Help Page wwhelp/wwhimpl/common/scripts/switch.js XSS

Source: CCN
Type: OSVDB ID: 61308
VMware vCenter Lab Manager WebWorks Help Page wwhelp/wwhimpl/common/html/bookmark.htm XSS

Source: CCN
Type: OSVDB ID: 62738
CA SiteMinder WebWorks Help wwhelp_entry.html Unspecified Parameter XSS

Source: CCN
Type: OSVDB ID: 62739
CA SiteMinder WebWorks Help wwhelp/wwhimpl/api.htm Unspecified Parameter XSS

Source: CCN
Type: OSVDB ID: 62740
CA SiteMinder WebWorks Help wwhelp/wwhimpl/common/html/frameset.htm Unspecified Parameter XSS

Source: CCN
Type: OSVDB ID: 62741
CA SiteMinder WebWorks Help wwhelp/wwhimpl/common/scripts/switch.js Unspecified Parameter XSS

Source: CCN
Type: OSVDB ID: 62742
CA SiteMinder WebWorks Help wwhelp/wwhimpl/common/html/bookmark.htm Unspecified Parameter XSS

Source: BUGTRAQ
Type: UNKNOWN
20100304 CA20100304-01: Security Notice for CA SiteMinder

Source: BID
Type: Patch
37346

Source: CCN
Type: BID-37346
WebWorks Help Multiple Cross Site Scripting Vulnerabilities

Source: CONFIRM
Type: Patch, Vendor Advisory
http://www.webworks.com/Security/2009-0001/

Source: XF
Type: UNKNOWN
vmware-webworks-xss(54820)

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:5944

Vulnerable Configuration:Configuration 1:
  • cpe:/a:webworks:epublisher:9.0:*:*:*:*:*:*:*
  • OR cpe:/a:webworks:epublisher:9.1:*:*:*:*:*:*:*
  • OR cpe:/a:webworks:epublisher:9.2:*:*:*:*:*:*:*
  • OR cpe:/a:webworks:epublisher:9.3:*:*:*:*:*:*:*
  • OR cpe:/a:webworks:epublisher:2008.1:*:*:*:*:*:*:*
  • OR cpe:/a:webworks:epublisher:2008.2:*:*:*:*:*:*:*
  • OR cpe:/a:webworks:epublisher:2008.3:*:*:*:*:*:*:*
  • OR cpe:/a:webworks:epublisher:2008.4:*:*:*:*:*:*:*
  • OR cpe:/a:webworks:epublisher:2009.1:*:*:*:*:*:*:*
  • OR cpe:/a:webworks:epublisher:2009.2:*:*:*:*:*:*:*
  • OR cpe:/a:webworks:help:2.0:*:*:*:*:*:*:*
  • OR cpe:/a:webworks:help:3.0:*:*:*:*:*:*:*
  • OR cpe:/a:webworks:help:4.0:*:*:*:*:*:*:*
  • OR cpe:/a:webworks:help:5.0:*:*:*:*:*:*:*
  • OR cpe:/a:webworks:publisher:6.0:*:*:*:*:*:*:*
  • OR cpe:/a:webworks:publisher:7.0:*:*:*:*:*:*:*
  • OR cpe:/a:webworks:publisher:8.0:*:*:*:*:*:*:*
  • OR cpe:/a:webworks:publisher:2003:*:*:*:*:*:*:*

    • Configuration 2:
  • cpe:/a:vmware:vcenter:4.0:*:*:*:*:*:*:*
  • AND
  • cpe:/o:microsoft:windows:*:*:*:*:*:*:*:*

    • Configuration 3:
  • cpe:/a:vmware:esx_server:4.0:*:*:*:*:*:*:*
  • OR cpe:/a:vmware:lab_manager:2.0:*:*:*:*:*:*:*
  • OR cpe:/a:vmware:server:2.0.2:*:*:*:*:*:*:*
  • OR cpe:/a:vmware:stage_manager:1.0:*:*:*:*:*:*:*
  • OR cpe:/a:vmware:stage_manager:*:*:*:*:*:*:*:* (Version <= 4.0)
  • OR cpe:/a:vmware:vcenter_lab_manager:3.0:*:*:*:*:*:*:*
  • OR cpe:/a:vmware:vcenter_lab_manager:3.0.1:*:*:*:*:*:*:*
  • OR cpe:/a:vmware:vcenter_lab_manager:3.0.2:*:*:*:*:*:*:*
  • OR cpe:/a:vmware:vcenter_lab_manager:4.0:*:*:*:*:*:*:*
  • OR cpe:/a:vmware:vcenter_stage_manager:1.0.1:*:*:*:*:*:*:*

    • Configuration CCN 1:
  • cpe:/a:vmware:server:*:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:org.mitre.oval:def:5944
    V
    		VMware vCenter, ESX patch and vCenter Lab Manager cross-site scripting issues
    2014-01-20
    BACK
    webworks epublisher 9.0
    webworks epublisher 9.1
    webworks epublisher 9.2
    webworks epublisher 9.3
    webworks epublisher 2008.1
    webworks epublisher 2008.2
    webworks epublisher 2008.3
    webworks epublisher 2008.4
    webworks epublisher 2009.1
    webworks epublisher 2009.2
    webworks help 2.0
    webworks help 3.0
    webworks help 4.0
    webworks help 5.0
    webworks publisher 6.0
    webworks publisher 7.0
    webworks publisher 8.0
    webworks publisher 2003
    vmware vcenter 4.0
    microsoft windows *
    vmware esx server 4.0
    vmware lab manager 2.0
    vmware server 2.0.2
    vmware stage manager 1.0
    vmware stage manager *
    vmware vcenter lab manager 3.0
    vmware vcenter lab manager 3.0.1
    vmware vcenter lab manager 3.0.2
    vmware vcenter lab manager 4.0
    vmware vcenter stage manager 1.0.1
    vmware server *