cvelistv5 - cve-2007-5472

CVE-2007-5472 (GCVE-0-2007-5472)

Vulnerability from cvelistv5

Published

2007-10-22 19:00

Modified

2024-08-07 15:31

Severity ?

CWE

Summary

Cross-site scripting (XSS) vulnerability in the Server component in CA Host-Based Intrusion Prevention System (HIPS) before 8.0.0.93 allows remote attackers to inject arbitrary web script or HTML via requests that are written to logs for later display in the log viewer.

References

URL

Tags

	http://www.securityfocus.com/archive/1/482536/100/0/threaded	mailing-list, x_refsource_BUGTRAQ
	http://supportconnectw.ca.com/public/cahips/infodocs/cahips-secnotice.asp	x_refsource_CONFIRM
	http://securitytracker.com/id?1018839	vdb-entry, x_refsource_SECTRACK
	https://exchange.xforce.ibmcloud.com/vulnerabilities/37285	vdb-entry, x_refsource_XF
	http://www.vupen.com/english/advisories/2007/3547	vdb-entry, x_refsource_VUPEN
	http://osvdb.org/37998	vdb-entry, x_refsource_OSVDB
	http://www.securityfocus.com/bid/26134	vdb-entry, x_refsource_BID
	http://secunia.com/advisories/27301	third-party-advisory, x_refsource_SECUNIA

Impacted products

	Vendor	Product	Version
	n/a	n/a	Version: n/a

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-07T15:31:59.187Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "20071019 [CAID 35754]: CA Host-Based Intrusion Prevention System (CA HIPS) Server Vulnerability",
            "tags": [
              "mailing-list",
              "x_refsource_BUGTRAQ",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/archive/1/482536/100/0/threaded"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://supportconnectw.ca.com/public/cahips/infodocs/cahips-secnotice.asp"
          },
          {
            "name": "1018839",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://securitytracker.com/id?1018839"
          },
          {
            "name": "ca-hips-log-xss(37285)",
            "tags": [
              "vdb-entry",
              "x_refsource_XF",
              "x_transferred"
            ],
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/37285"
          },
          {
            "name": "ADV-2007-3547",
            "tags": [
              "vdb-entry",
              "x_refsource_VUPEN",
              "x_transferred"
            ],
            "url": "http://www.vupen.com/english/advisories/2007/3547"
          },
          {
            "name": "37998",
            "tags": [
              "vdb-entry",
              "x_refsource_OSVDB",
              "x_transferred"
            ],
            "url": "http://osvdb.org/37998"
          },
          {
            "name": "26134",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/26134"
          },
          {
            "name": "27301",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/27301"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2007-10-19T00:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "value": "Cross-site scripting (XSS) vulnerability in the Server component in CA Host-Based Intrusion Prevention System (HIPS) before 8.0.0.93 allows remote attackers to inject arbitrary web script or HTML via requests that are written to logs for later display in the log viewer."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2018-10-15T20:57:01.000Z",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "name": "20071019 [CAID 35754]: CA Host-Based Intrusion Prevention System (CA HIPS) Server Vulnerability",
          "tags": [
            "mailing-list",
            "x_refsource_BUGTRAQ"
          ],
          "url": "http://www.securityfocus.com/archive/1/482536/100/0/threaded"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://supportconnectw.ca.com/public/cahips/infodocs/cahips-secnotice.asp"
        },
        {
          "name": "1018839",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://securitytracker.com/id?1018839"
        },
        {
          "name": "ca-hips-log-xss(37285)",
          "tags": [
            "vdb-entry",
            "x_refsource_XF"
          ],
          "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/37285"
        },
        {
          "name": "ADV-2007-3547",
          "tags": [
            "vdb-entry",
            "x_refsource_VUPEN"
          ],
          "url": "http://www.vupen.com/english/advisories/2007/3547"
        },
        {
          "name": "37998",
          "tags": [
            "vdb-entry",
            "x_refsource_OSVDB"
          ],
          "url": "http://osvdb.org/37998"
        },
        {
          "name": "26134",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/26134"
        },
        {
          "name": "27301",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/27301"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2007-5472",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Cross-site scripting (XSS) vulnerability in the Server component in CA Host-Based Intrusion Prevention System (HIPS) before 8.0.0.93 allows remote attackers to inject arbitrary web script or HTML via requests that are written to logs for later display in the log viewer."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "20071019 [CAID 35754]: CA Host-Based Intrusion Prevention System (CA HIPS) Server Vulnerability",
              "refsource": "BUGTRAQ",
              "url": "http://www.securityfocus.com/archive/1/482536/100/0/threaded"
            },
            {
              "name": "http://supportconnectw.ca.com/public/cahips/infodocs/cahips-secnotice.asp",
              "refsource": "CONFIRM",
              "url": "http://supportconnectw.ca.com/public/cahips/infodocs/cahips-secnotice.asp"
            },
            {
              "name": "1018839",
              "refsource": "SECTRACK",
              "url": "http://securitytracker.com/id?1018839"
            },
            {
              "name": "ca-hips-log-xss(37285)",
              "refsource": "XF",
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/37285"
            },
            {
              "name": "ADV-2007-3547",
              "refsource": "VUPEN",
              "url": "http://www.vupen.com/english/advisories/2007/3547"
            },
            {
              "name": "37998",
              "refsource": "OSVDB",
              "url": "http://osvdb.org/37998"
            },
            {
              "name": "26134",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/26134"
            },
            {
              "name": "27301",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/27301"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2007-5472",
    "datePublished": "2007-10-22T19:00:00.000Z",
    "dateReserved": "2007-10-16T00:00:00.000Z",
    "dateUpdated": "2024-08-07T15:31:59.187Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CERTA-2007-AVI-452

Vulnerability from certfr_avis

Une vulnérabilité dans la partie « serveur » de CA HIPS permet à un utilisateur malveillant d'exécuter du code arbitraire à distance.

Description

CA HIPS (Host-based Intrusion Prevention System) est un logiciel de prévention des intrusions de l'éditeur Computer Associates.

Les journaux de CA HIPS sont visualisables en utilisant un navigateur web. Un défaut de filtrage des données avant leur journalisation a été mis en évidence. Il permet à utilisateur malveillant de provoquer une exécution de code lors de la visualisation des journaux par un navigateur web.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

CA HIPS server r8.

Impacted products

	Vendor	Product	Description

References

Title

Publication Time

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted