Vulnerability-Lookup

CNVD-2017-04586

Vulnerability from cnvd - Published: 2017-03-23

Title

NetIQ Access Manager跨站脚本漏洞

Description

NetIQ Access Manager提供了一套简单、安全、可扩展的解决方案，可处理所有的Web访问需求。 NetIQ Access Manager存在跨站脚本漏洞，该漏洞产生的原因是Access Manager的“身份服务器”未对传入的SAML请求参数及签名进行有效验证所致。允许攻击者利用漏洞执行恶意脚本代码，获取敏感信息。

Severity

中

Patch Name

NetIQ Access Manager跨站脚本漏洞的补丁

Patch Description

Formal description

厂商已发布漏洞修复程序，请及时关注更新：https://www.novell.com/support/kb/doc.php?id=7017808

Reference

https://www.novell.com/support/kb/doc.php?id=7017808

Impacted products

Name
['NetIQ Access Manager 4.2', 'NetIQ Access Manager 4.1']

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2016-5751"
    }
  },
  "description": "NetIQ Access Manager\u63d0\u4f9b\u4e86\u4e00\u5957\u7b80\u5355\u3001\u5b89\u5168\u3001\u53ef\u6269\u5c55\u7684\u89e3\u51b3\u65b9\u6848\uff0c\u53ef\u5904\u7406\u6240\u6709\u7684Web\u8bbf\u95ee\u9700\u6c42\u3002 \r\n\r\nNetIQ Access Manager\u5b58\u5728\u8de8\u7ad9\u811a\u672c\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u4ea7\u751f\u7684\u539f\u56e0\u662fAccess Manager\u7684\u201c\u8eab\u4efd\u670d\u52a1\u5668\u201d\u672a\u5bf9\u4f20\u5165\u7684SAML\u8bf7\u6c42\u53c2\u6570\u53ca\u7b7e\u540d\u8fdb\u884c\u6709\u6548\u9a8c\u8bc1\u6240\u81f4\u3002\u5141\u8bb8\u653b\u51fb\u8005\u5229\u7528\u6f0f\u6d1e\u6267\u884c\u6076\u610f\u811a\u672c\u4ee3\u7801\uff0c\u83b7\u53d6\u654f\u611f\u4fe1\u606f\u3002",
  "discovererName": "unknown",
  "formalWay": "\u5382\u5546\u5df2\u53d1\u5e03\u6f0f\u6d1e\u4fee\u590d\u7a0b\u5e8f\uff0c\u8bf7\u53ca\u65f6\u5173\u6ce8\u66f4\u65b0\uff1ahttps://www.novell.com/support/kb/doc.php?id=7017808",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2017-04586",
  "openTime": "2017-03-23",
  "patchDescription": "NetIQ Access Manager\u63d0\u4f9b\u4e86\u4e00\u5957\u7b80\u5355\u3001\u5b89\u5168\u3001\u53ef\u6269\u5c55\u7684\u89e3\u51b3\u65b9\u6848\uff0c\u53ef\u5904\u7406\u6240\u6709\u7684Web\u8bbf\u95ee\u9700\u6c42\u3002 \r\n\r\nNetIQ Access Manager\u5b58\u5728\u8de8\u7ad9\u811a\u672c\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u4ea7\u751f\u7684\u539f\u56e0\u662fAccess Manager\u7684\u201c\u8eab\u4efd\u670d\u52a1\u5668\u201d\u672a\u5bf9\u4f20\u5165\u7684SAML\u8bf7\u6c42\u53c2\u6570\u53ca\u7b7e\u540d\u8fdb\u884c\u6709\u6548\u9a8c\u8bc1\u6240\u81f4\u3002\u5141\u8bb8\u653b\u51fb\u8005\u5229\u7528\u6f0f\u6d1e\u6267\u884c\u6076\u610f\u811a\u672c\u4ee3\u7801\uff0c\u83b7\u53d6\u654f\u611f\u4fe1\u606f\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "NetIQ Access Manager\u8de8\u7ad9\u811a\u672c\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": [
      "NetIQ Access Manager 4.2",
      "NetIQ Access Manager 4.1"
    ]
  },
  "referenceLink": "https://www.novell.com/support/kb/doc.php?id=7017808",
  "serverity": "\u4e2d",
  "submitTime": "2017-03-27",
  "title": "NetIQ Access Manager\u8de8\u7ad9\u811a\u672c\u6f0f\u6d1e"
}

CVE-2016-5751 (GCVE-0-2016-5751)

Vulnerability from cvelistv5 – Published: 2017-03-23 06:36 – Updated: 2024-08-06 01:08

Summary

An unfiltered finalizer target URL in the SAML processing feature in Identity Server in NetIQ Access Manager 4.1 before 4.1.2 HF1 and 4.2 before 4.2.2 could be used to trigger XSS and leak authentication credentials.

Severity

No CVSS data available.

CWE

unfiltered finalizer target URL

Assigner

microfocus

References

1 reference

URL	Tags
https://www.novell.com/support/kb/doc.php?id=7017808	x_refsource_CONFIRM

Impacted products

1 product

Vendor	Product	Version
n/a	NetIQ Access Manager	Affected: NetIQ Access Manager

Date Public

2017-03-23 00:00

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-06T01:08:00.709Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://www.novell.com/support/kb/doc.php?id=7017808"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "NetIQ Access Manager",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "NetIQ Access Manager"
            }
          ]
        }
      ],
      "datePublic": "2017-03-23T00:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "value": "An unfiltered finalizer target URL in the SAML processing feature in Identity Server in NetIQ Access Manager 4.1 before 4.1.2 HF1 and 4.2 before 4.2.2 could be used to trigger XSS and leak authentication credentials."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "unfiltered finalizer target URL",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2021-01-06T16:15:29.000Z",
        "orgId": "f81092c5-7f14-476d-80dc-24857f90be84",
        "shortName": "microfocus"
      },
      "references": [
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://www.novell.com/support/kb/doc.php?id=7017808"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "security@microfocus.com",
          "ID": "CVE-2016-5751",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "NetIQ Access Manager",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "NetIQ Access Manager"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "An unfiltered finalizer target URL in the SAML processing feature in Identity Server in NetIQ Access Manager 4.1 before 4.1.2 HF1 and 4.2 before 4.2.2 could be used to trigger XSS and leak authentication credentials."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "unfiltered finalizer target URL"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://www.novell.com/support/kb/doc.php?id=7017808",
              "refsource": "CONFIRM",
              "url": "https://www.novell.com/support/kb/doc.php?id=7017808"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "f81092c5-7f14-476d-80dc-24857f90be84",
    "assignerShortName": "microfocus",
    "cveId": "CVE-2016-5751",
    "datePublished": "2017-03-23T06:36:00.000Z",
    "dateReserved": "2016-06-23T00:00:00.000Z",
    "dateUpdated": "2024-08-06T01:08:00.709Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CNVD-2017-04586

CVE-2016-5751 (GCVE-0-2016-5751)

Tags

Sightings

Nomenclature