Vulnerability CVE-2013-4430 - CERT Civis.Net

Vulnerability Name:

CVE-2013-4430 (CCN-102906)

Assigned:

2013-05-02

Published:

2013-05-02

Updated:

2014-05-19

Summary:

Cross-site scripting (XSS) vulnerability in Mahara before 1.5.12, 1.6.x before 1.6.7, and 1.7.x before 1.7.3 allows remote attackers to inject arbitrary web script or HTML via the Host header to lib/web.php.

CVSS v3 Severity:

5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): Low Availibility (A): None

CVSS v2 Severity:

4.3 Medium (CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N)
3.7 Low (Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N/E:H/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Medium Authentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): Partial Availibility (A): None

4.3 Medium (CCN CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N)
3.7 Low (CCN Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N/E:H/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Medium Athentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): Partial Availibility (A): None

Vulnerability Type:

Vulnerability Consequences:

Cross-Site Scripting

References:

Source: MITRE
Type: CNA
CVE-2013-4430

Source: MLIST
Type: UNKNOWN
[oss-security] 20131008 CVE request: mahara 1.7.3

Source: CCN
Type: oss-security Mailing List, Tue, 15 Oct 2013 14:18:48 +0200
mahara 1.7.3

Source: MLIST
Type: UNKNOWN
[oss-security] 20131015 Re: CVE request: mahara 1.7.3

Source: MLIST
Type: UNKNOWN
[oss-security] 20131015 Re: Re: CVE request: mahara 1.7.3

Source: CCN
Type: Mahara Bug#1175446
user supplied $_SERVER['HTTP_HOST'] can be used for injections

Source: CONFIRM
Type: UNKNOWN
https://bugs.launchpad.net/mahara/+bug/1175446

Source: XF
Type: UNKNOWN
mahara-cve20134430-xss(102906)

Source: CONFIRM
Type: UNKNOWN
https://mahara.org/interaction/forum/topic.php?id=5754

Source: CCN
Type: WhiteSource Vulnerability Database
CVE-2013-4430

Vulnerable Configuration:

Configuration 1:

cpe:/a:mahara:mahara:1.7:rc1:*:*:*:*:*:*

OR cpe:/a:mahara:mahara:1.7.0:-:*:*:*:*:*:*

OR cpe:/a:mahara:mahara:1.7.1:*:*:*:*:*:*:*

OR cpe:/a:mahara:mahara:1.7.2:*:*:*:*:*:*:*

Configuration 2:

cpe:/a:mahara:mahara:1.6.0:*:*:*:*:*:*:*

OR cpe:/a:mahara:mahara:1.6.1:*:*:*:*:*:*:*

OR cpe:/a:mahara:mahara:1.6.2:*:*:*:*:*:*:*

OR cpe:/a:mahara:mahara:1.6.3:*:*:*:*:*:*:*

OR cpe:/a:mahara:mahara:1.6.4:*:*:*:*:*:*:*

OR cpe:/a:mahara:mahara:1.6.5:*:*:*:*:*:*:*

OR cpe:/a:mahara:mahara:1.6.6:*:*:*:*:*:*:*

Configuration 3:

cpe:/a:mahara:mahara:1.5:rc1:*:*:*:*:*:*

OR cpe:/a:mahara:mahara:1.5:rc2:*:*:*:*:*:*

OR cpe:/a:mahara:mahara:1.5.0:*:*:*:*:*:*:*

OR cpe:/a:mahara:mahara:1.5.1:*:*:*:*:*:*:*

OR cpe:/a:mahara:mahara:1.5.2:*:*:*:*:*:*:*

OR cpe:/a:mahara:mahara:1.5.3:*:*:*:*:*:*:*

OR cpe:/a:mahara:mahara:1.5.4:*:*:*:*:*:*:*

OR cpe:/a:mahara:mahara:1.5.6:*:*:*:*:*:*:*

OR cpe:/a:mahara:mahara:1.5.7:*:*:*:*:*:*:*

OR cpe:/a:mahara:mahara:1.5.8:*:*:*:*:*:*:*

OR cpe:/a:mahara:mahara:1.5.9:*:*:*:*:*:*:*

OR cpe:/a:mahara:mahara:1.5.10:*:*:*:*:*:*:*

OR cpe:/a:mahara:mahara:*:*:*:*:*:*:*:* (Version <= 1.5.11)

Configuration CCN 1:

cpe:/a:mahara:mahara:1.5.11:*:*:*:*:*:*:*

OR cpe:/a:mahara:mahara:1.6.6:*:*:*:*:*:*:*

OR cpe:/a:mahara:mahara:1.7.2:*:*:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:com.ubuntu.precise:def:20134430000	V	CVE-2013-4430 on Ubuntu 12.04 LTS (precise) - medium.	2014-05-19