Vulnerability CVE-2012-2399 - CERT Civis.Net

Vulnerability Name:

CVE-2012-2399 (CCN-75210)

Assigned:

2012-04-20

Published:

2012-04-20

Updated:

2017-12-19

Summary:

Cross-site scripting (XSS) vulnerability in swfupload.swf in SWFupload 2.2.0.1 and earlier, as used in WordPress before 3.5.2, TinyMCE Image Manager 1.1 and earlier, and other products allows remote attackers to inject arbitrary web script or HTML via the buttonText parameter, a different vulnerability than CVE-2012-3414.

CVSS v3 Severity:

5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): Low Availibility (A): None

CVSS v2 Severity:

10.0 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C)
7.4 High (Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Authentication (Au): None
Impact Metrics:	Confidentiality (C): Complete Integrity (I): Complete Availibility (A): Complete

4.3 Medium (CCN CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N)
3.2 Low (CCN Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Medium Athentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): Partial Availibility (A): None

Vulnerability Type:

Vulnerability Consequences:

Other

References:

Source: CONFIRM
Type: UNKNOWN
http://core.trac.wordpress.org/browser/branches/3.3/wp-includes/js/swfupload/swfupload.swf?rev=20503

Source: MITRE
Type: CNA
CVE-2012-2399

Source: JVN
Type: UNKNOWN
JVN#25280162

Source: JVNDB
Type: UNKNOWN
JVNDB-2012-002110

Source: CONFIRM
Type: UNKNOWN
http://make.wordpress.org/core/2013/06/21/secure-swfupload/

Source: OSVDB
Type: UNKNOWN
81459

Source: MISC
Type: UNKNOWN
http://packetstormsecurity.com/files/120746/SWFUpload-Content-Spoofing-Cross-Site-Scripting.html

Source: MISC
Type: UNKNOWN
http://packetstormsecurity.com/files/122399/tinymce11-xss.txt

Source: FULLDISC
Type: UNKNOWN
20130310 CS and XSS vulnerabilities in SWFUpload

Source: SECUNIA
Type: UNKNOWN
49138

Source: CCN
Type: WordPress Plugin Directory
WordPress 3.3.2 (and WordPress 3.4 Beta 3)

Source: CONFIRM
Type: Patch, Vendor Advisory
http://wordpress.org/news/2012/04/wordpress-3-3-2/

Source: DEBIAN
Type: UNKNOWN
DSA-2470

Source: DEBIAN
Type: DSA-2470
wordpress -- several vulnerabilities

Source: MLIST
Type: UNKNOWN
[oss-security] 20130718 Re: Re: SWFUpload <= (Object Injection/CSRF) Vulnerabilities Multiple flaws

Source: OSVDB
Type: UNKNOWN
91134

Source: CCN
Type: OSVDB ID: 81459
WordPress wp-includes/js/swfupload/swfupload.swf Unspecified Remote Issue

Source: BID
Type: UNKNOWN
53192

Source: CCN
Type: BID-53192
WordPress Multiple Remote Vulnerabilities

Source: XF
Type: UNKNOWN
wordpress-swfupload-unspecified(75210)

Source: XF
Type: UNKNOWN
wordpress-swfupload-unspecified(75210)

Vulnerable Configuration:

Configuration 1:

cpe:/a:wordpress:wordpress:0.71:-:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:1.0:-:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:1.0.1:-:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:1.0.2:*:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:1.1.1:*:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:1.2:-:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:1.2.1:*:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:1.2.2:*:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:1.2.3:*:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:1.2.4:*:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:1.2.5:*:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:1.2.5:a:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:1.3:*:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:1.3.2:*:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:1.3.3:*:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:1.5:*:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:1.5.1:*:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:1.5.1.1:*:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:1.5.1.2:*:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:1.5.1.3:*:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:1.5.2:*:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:2.0:-:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:2.0.1:-:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:2.0.2:*:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:2.0.4:*:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:2.0.5:-:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:2.0.6:-:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:2.0.7:-:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:2.0.8:-:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:2.0.9:-:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:2.0.10:-:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:2.0.11:-:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:2.1:-:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:2.1.1:-:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:2.1.2:*:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:2.1.3:-:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:2.2:-:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:2.2.1:-:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:2.2.2:*:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:2.2.3:*:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:2.3:-:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:2.3.1:-:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:2.3.2:-:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:2.3.3:*:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:2.5:-:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:2.5.1:*:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:2.6:-:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:2.6.1:-:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:2.6.2:*:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:2.6.3:*:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:2.6.5:*:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:2.7:-:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:2.7.1:*:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:2.8:-:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:2.8.1:-:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:2.8.2:*:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:2.8.3:*:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:2.8.4:*:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:2.8.4:a:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:2.8.5:-:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:2.8.5.1:*:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:2.8.5.2:*:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:2.8.6:-:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:2.9:-:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:2.9.1:-:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:2.9.1.1:*:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:2.9.2:*:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:3.0:-:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:3.0.1:*:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:3.0.2:*:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:3.0.3:*:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:3.0.4:*:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:3.0.5:*:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:3.0.6:*:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:3.1:-:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:3.1.1:-:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:3.1.2:*:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:3.1.3:*:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:3.3:-:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:*:*:*:*:*:*:*:* (Version <= 3.3.1)

Configuration CCN 1:

cpe:/a:wordpress:wordpress:1.2:-:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:1.2.1:*:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:1.5.1.2:*:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:1.5.1.3:*:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:1.5.2:*:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:2.0.1:-:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:2.0.2:*:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:2.0.5:-:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:2.0.6:-:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:2.1.1:-:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:2.1.2:*:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:2.1.3:-:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:2.2:-:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:2.2.1:-:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:2.3:-:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:2.0.9:-:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:2.0.11:-:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:2.3.2:-:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:2.3.3:*:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:2.3.1:-:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:2.2.3:*:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:2.2.2:*:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:2.0.10:-:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:2.0.7:-:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:2.0.4:*:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:2.0:-:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:2.1:-:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:2.5:-:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:0.71:-:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:1.0:-:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:1.0.1:-:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:1.0.2:*:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:1.2.2:*:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:1.5:*:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:1.5.1:*:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:1.5.1.1:*:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:2.0.8:-:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:2.5.1:*:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:2.6:-:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:2.6.1:-:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:2.6.2:*:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:2.6.5:*:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:2.7.1:*:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:2.6.3:*:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:2.8.1:-:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:2.8.2:*:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:2.8.3:*:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:2.7:-:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:2.8:-:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:2.8.4:*:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:2.8.5:-:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:2.9:-:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:2.9.2:*:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:3.0.1:*:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:3.0.2:*:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:3.0.3:*:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:3.0.4:*:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:3.1:-:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:3.1.2:*:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:3.1.3:*:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:3.1.1:-:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:1.1.1:*:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:1.2.3:*:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:1.2.4:*:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:1.2.5:*:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:1.2.5:a:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:1.3:*:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:1.3.2:*:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:1.3.3:*:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:2.8.4:a:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:2.8.5.1:*:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:2.8.5.2:*:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:2.8.6:-:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:2.9.1:-:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:2.9.1.1:*:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:3.0:-:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:3.0.5:*:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:3.0.6:*:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:3.3:-:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:3.3.1:*:*:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.mitre.oval:def:20209	P	DSA-2470-1 wordpress - several	2014-06-23
oval:com.ubuntu.precise:def:20122399000	V	CVE-2012-2399 on Ubuntu 12.04 LTS (precise) - medium.	2012-04-21
oval:com.ubuntu.xenial:def:201223990000000	V	CVE-2012-2399 on Ubuntu 16.04 LTS (xenial) - medium.	2012-04-21
oval:com.ubuntu.trusty:def:20122399000	V	CVE-2012-2399 on Ubuntu 14.04 LTS (trusty) - medium.	2012-04-21
oval:com.ubuntu.xenial:def:20122399000	V	CVE-2012-2399 on Ubuntu 16.04 LTS (xenial) - medium.	2012-04-21