Vulnerability CVE-2010-3700 - CERT Civis.Net

Vulnerability Name:

CVE-2010-3700 (CCN-62833)

Assigned:

2010-10-27

Published:

2010-10-27

Updated:

2018-10-10

Summary:

VMware SpringSource Spring Security 2.x before 2.0.6 and 3.x before 3.0.4, and Acegi Security 1.0.0 through 1.0.7, as used in IBM WebSphere Application Server (WAS) 6.1 and 7.0, allows remote attackers to bypass security constraints via a path parameter.

CVSS v3 Severity:

5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): Low Availibility (A): None

CVSS v2 Severity:

5.0 Medium (CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:P/A:N)
3.7 Low (Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:P/A:N/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Authentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): Partial Availibility (A): None

5.0 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:P/A:N)
3.7 Low (CCN Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:P/A:N/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): Partial Availibility (A): None

Vulnerability Type:

Vulnerability Consequences:

Bypass Security

References:

Source: MITRE
Type: CNA
CVE-2010-3700

Source: OSVDB
Type: UNKNOWN
68931

Source: CCN
Type: SA42024
Spring Security Constraints Security Bypass Vulnerability

Source: SECUNIA
Type: UNKNOWN
42024

Source: CCN
Type: OSVDB ID: 68931
Spring Security URL Path Parameter Constraints Bypass

Source: BUGTRAQ
Type: UNKNOWN
20101027 CVE-2010-3700: Spring Security bypass of security constraints

Source: BID
Type: UNKNOWN
44496

Source: CCN
Type: BID-44496
Spring Security URI Path Parameter Security Bypass Vulnerability

Source: CCN
Type: SpringSource Web site
Bypass of security constraints

Source: CONFIRM
Type: UNKNOWN
http://www.springsource.com/security/cve-2010-3700

Source: XF
Type: UNKNOWN
spring-security-constraints-sec-bypass(62833)

Source: MISC
Type: UNKNOWN
https://issues.apache.org/bugzilla/show_bug.cgi?id=25015

Vulnerable Configuration:

Configuration 1:

cpe:/a:acegisecurity:acegi-security:1.0.0:*:*:*:*:*:*:*

OR cpe:/a:acegisecurity:acegi-security:1.0.1:*:*:*:*:*:*:*

OR cpe:/a:acegisecurity:acegi-security:1.0.2:*:*:*:*:*:*:*

OR cpe:/a:acegisecurity:acegi-security:1.0.3:*:*:*:*:*:*:*

OR cpe:/a:acegisecurity:acegi-security:1.0.4:*:*:*:*:*:*:*

OR cpe:/a:acegisecurity:acegi-security:1.0.5:*:*:*:*:*:*:*

OR cpe:/a:acegisecurity:acegi-security:1.0.6:*:*:*:*:*:*:*

OR cpe:/a:acegisecurity:acegi-security:1.0.7:*:*:*:*:*:*:*

OR cpe:/a:vmware:springsource_spring_security:2.0.0:*:*:*:*:*:*:*

OR cpe:/a:vmware:springsource_spring_security:2.0.1:*:*:*:*:*:*:*

OR cpe:/a:vmware:springsource_spring_security:2.0.2:*:*:*:*:*:*:*

OR cpe:/a:vmware:springsource_spring_security:2.0.3:*:*:*:*:*:*:*

OR cpe:/a:vmware:springsource_spring_security:2.0.4:*:*:*:*:*:*:*

OR cpe:/a:vmware:springsource_spring_security:2.0.5:*:*:*:*:*:*:*

OR cpe:/a:vmware:springsource_spring_security:3.0.0:*:*:*:*:*:*:*

OR cpe:/a:vmware:springsource_spring_security:3.0.1:*:*:*:*:*:*:*

OR cpe:/a:vmware:springsource_spring_security:3.0.2:*:*:*:*:*:*:*

OR cpe:/a:vmware:springsource_spring_security:3.0.3:*:*:*:*:*:*:*

AND

cpe:/a:ibm:websphere_application_server:6.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:websphere_application_server:7.0:*:*:*:*:*:*:*

Denotes that component is vulnerable