Detections
Analytics
CiscoWorks Common Services HTTP Response Splitting
medium Nessus Plugin ID 58950
Language:
Synopsis
The network management framework on the remote web server has an HTTP response splitting vulnerability.Description
The version of CiscoWorks Common Services on the remote host has an HTTP response splitting vulnerability. Common Services is a framework included with several Cisco products. Input to the 'URL' parameter of Autologin.jsp is not properly sanitized.A remote attacker could exploit this by tricking a user into making a malicious request, resulting in the injection of HTTP headers, modification of the HTTP response body, or splitting the HTTP response into multiple responses.
Solution
Refer to the referenced Cisco Bug IDs for more information.See Also
https://www.tenable.com/security/research/tra-2012-19
http://www.nessus.org/u?9a4f1b73
http://www.nessus.org/u?4da1bafd
http://www.nessus.org/u?46462822
http://www.nessus.org/u?3749073d
Plugin Details
Severity: Medium
ID: 58950
File Name: ciscoworks_response_splitting.nasl
Version: 1.11
Type: remote
Family: CGI abuses
Published: 5/1/2012
Updated: 1/19/2021
Supported Sensors: Nessus
Risk Information
VPR
Risk Factor: Low
Score: 3.0
CVSS v2
Risk Factor: Medium
Base Score: 4.3
Temporal Score: 3.6
Vector: CVSS2#AV:N/AC:M/Au:N/C:N/I:P/A:N
Vulnerability Information
CPE: cpe:/a:cisco:ciscoworks_common_services
Excluded KB Items: Settings/disable_cgi_scanning
Exploit Available: true
Exploit Ease: Exploits are available
Patch Publication Date: 3/19/2012
Vulnerability Publication Date: 3/19/2012
Reference Information
CVE: CVE-2011-4237
BID: 53439
CWE: 20, 442, 629, 711, 712, 722, 725, 74, 750, 751, 79, 800, 801, 809, 811, 864, 900, 928, 931, 990
TRA: TRA-2012-19
CISCO-BUG-ID: CSCtt34638, CSCtu18693, CSCtx59431, CSCtx59438, CSCtx59447, CSCtx59451