9.8

CVE-2014-4172

A URL parameter injection vulnerability was found in the back-channel ticket validation step of the CAS protocol in Jasig Java CAS Client before 3.3.2, .NET CAS Client before 1.0.2, and phpCAS before 1.3.3 that allow remote attackers to inject arbitrary web script or HTML via the (1) service parameter to validation/AbstractUrlBasedTicketValidator.java or (2) pgtUrl parameter to validation/Cas20ServiceTicketValidator.java.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Apereo.Net Cas Client Version < 1.0.2
ApereoJava Cas Client Version < 3.3.2
ApereoPhpcas Version < 1.3.3
DebianDebian Linux Version7.0
FedoraprojectFedora Version20
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 6.06% 0.924
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 9.8 3.9 5.9
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvd@nist.gov 7.5 10 6.4
AV:N/AC:L/Au:N/C:P/I:P/A:P
CWE-74 Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')

The product constructs all or part of a command, data structure, or record using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify how it is parsed or interpreted when it is sent to a downstream component.

https://github.com/Jasig/phpCAS/blob/master/docs/ChangeLog
Third Party Advisory
Release Notes
http://lists.fedoraproject.org/pipermail/package-announce/2014-August/137182.html
Third Party Advisory
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=759718
Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=1131350
Third Party Advisory
Issue Tracking
https://exchange.xforce.ibmcloud.com/vulnerabilities/95673
Third Party Advisory
VDB Entry
https://github.com/Jasig/dotnet-cas-client/commit/f0e030014fb7a39e5f38469f43199dc590fd0e8d
Patch
Third Party Advisory
https://github.com/Jasig/java-cas-client/commit/ae37092100c8eaec610dab6d83e5e05a8ee58814
Patch
Third Party Advisory
https://github.com/Jasig/phpCAS/pull/125
Third Party Advisory
https://issues.jasig.org/browse/CASC-228
Third Party Advisory
https://www.debian.org/security/2014/dsa-3017.en.html
Third Party Advisory
https://www.mail-archive.com/cas-user%40lists.jasig.org/msg17338.html