Vulnerability CVE-2012-5460 - CERT Civis.Net

Vulnerability Name:

CVE-2012-5460 (CCN-85906)

Assigned:

2012-10-24

Published:

2013-07-22

Updated:

2013-08-01

Summary:

Cross-site scripting (XSS) vulnerability in the help page in Juniper Secure Access (SA) with IVE OS before 7.1r13, 7.2.x before 7.2r7, and 7.3.x before 7.3r2 allows remote attackers to inject arbitrary web script or HTML via the WWHSearchWordsText parameter.

CVSS v3 Severity:

5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): Low Availibility (A): None

CVSS v2 Severity:

4.3 Medium (CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N)
3.7 Low (Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N/E:H/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Medium Authentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): Partial Availibility (A): None

4.3 Medium (CCN CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N)
3.7 Low (CCN Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N/E:H/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Medium Athentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): Partial Availibility (A): None

Vulnerability Type:

Vulnerability Consequences:

Gain Access

References:

Source: BUGTRAQ
Type: UNKNOWN
20130722 Juniper Secure Access XSS Vulnerability

Source: CCN
Type: BugTraq Mailing List, Mon Jul 22 2013 - 12:30:29 CDT
Juniper Secure Access XSS Vulnerability

Source: MITRE
Type: CNA
CVE-2012-5460

Source: CCN
Type: SA54201
Juniper IVE OS Login and Support Pages Cross-Site Scripting Vulnerabilities

Source: MISC
Type: Vendor Advisory
http://www.juniper.net/alerts/viewalert.jsp?actionBtn=Search&txtAlertNumber=PSN-2013-03-874&viewMode=view

Source: CCN
Type: Juniper Networks Web site
IVE OS Software

Source: CCN
Type: BID-61399
Junos Pulse Secure Access Service (SSL VPN) Multiple HTML Injection Vulnerabilities

Source: XF
Type: UNKNOWN
juniper-secure-cve20125460-xss(85906)

Vulnerable Configuration:

Configuration 1:

cpe:/o:juniper:ive_os:7.1:*:*:*:*:*:*:*

OR cpe:/o:juniper:ive_os:7.2:*:*:*:*:*:*:*

OR cpe:/o:juniper:ive_os:7.3:*:*:*:*:*:*:*

AND

cpe:/a:juniper:secure_access_virtual_appliance:-:*:*:*:*:*:*:*

OR cpe:/h:juniper:fips_secure_access_4000:-:*:*:*:*:*:*:*

OR cpe:/h:juniper:fips_secure_access_4500:-:*:*:*:*:*:*:*

OR cpe:/h:juniper:fips_secure_access_6000:-:*:*:*:*:*:*:*

OR cpe:/h:juniper:fips_secure_access_6500:-:*:*:*:*:*:*:*

OR cpe:/h:juniper:mag2600_gateway:-:*:*:*:*:*:*:*

OR cpe:/h:juniper:mag4610_gateway:-:*:*:*:*:*:*:*

OR cpe:/h:juniper:mag6610_gateway:-:*:*:*:*:*:*:*

OR cpe:/h:juniper:mag6611_gateway:-:*:*:*:*:*:*:*

OR cpe:/h:juniper:secure_access_2000:-:*:*:*:*:*:*:*

OR cpe:/h:juniper:secure_access_2500:-:*:*:*:*:*:*:*

OR cpe:/h:juniper:secure_access_4000:-:*:*:*:*:*:*:*

OR cpe:/h:juniper:secure_access_4500:-:*:*:*:*:*:*:*

OR cpe:/h:juniper:secure_access_6000:-:*:*:*:*:*:*:*

OR cpe:/h:juniper:secure_access_6500:-:*:*:*:*:*:*:*

OR cpe:/h:juniper:secure_access_700:-:*:*:*:*:*:*:*

Configuration CCN 1:

cpe:/a:juniper:junos_pulse_secure_access_service:7.1r1:*:*:*:*:*:*:*

Denotes that component is vulnerable