TROYANOSYVIRUS
Retour aux CVEs

CVE-2014-4172

CRITICAL
9.8

Description

A URL parameter injection vulnerability was found in the back-channel ticket validation step of the CAS protocol in Jasig Java CAS Client before 3.3.2, .NET CAS Client before 1.0.2, and phpCAS before 1.3.3 that allow remote attackers to inject arbitrary web script or HTML via the (1) service parameter to validation/AbstractUrlBasedTicketValidator.java or (2) pgtUrl parameter to validation/Cas20ServiceTicketValidator.java.

Details CVE

Score CVSS v3.19.8
SeveriteCRITICAL
Vecteur CVSSCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Vecteur d'attaqueNETWORK
ComplexiteLOW
Privileges requisNONE
Interaction utilisateurNONE
Publie1/24/2020
Derniere modification11/21/2024
Sourcenvd
Observations honeypot0

Produits affectes

apereo:.net_cas_clientapereo:java_cas_clientapereo:phpcasdebian:debian_linuxfedoraproject:fedora

Faiblesses (CWE)

CWE-74

References

http://lists.fedoraproject.org/pipermail/package-announce/2014-August/137182.html(cve@mitre.org)
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=759718(cve@mitre.org)
https://bugzilla.redhat.com/show_bug.cgi?id=1131350(cve@mitre.org)
https://exchange.xforce.ibmcloud.com/vulnerabilities/95673(cve@mitre.org)
https://github.com/Jasig/dotnet-cas-client/commit/f0e030014fb7a39e5f38469f43199dc590fd0e8d(cve@mitre.org)
https://github.com/Jasig/java-cas-client/commit/ae37092100c8eaec610dab6d83e5e05a8ee58814(cve@mitre.org)
https://github.com/Jasig/phpCAS/blob/master/docs/ChangeLog(cve@mitre.org)
https://github.com/Jasig/phpCAS/pull/125(cve@mitre.org)
https://issues.jasig.org/browse/CASC-228(cve@mitre.org)
https://www.debian.org/security/2014/dsa-3017.en.html(cve@mitre.org)
https://www.mail-archive.com/cas-user%40lists.jasig.org/msg17338.html(cve@mitre.org)
http://lists.fedoraproject.org/pipermail/package-announce/2014-August/137182.html(af854a3a-2127-422b-91ae-364da2661108)
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=759718(af854a3a-2127-422b-91ae-364da2661108)
https://bugzilla.redhat.com/show_bug.cgi?id=1131350(af854a3a-2127-422b-91ae-364da2661108)
https://exchange.xforce.ibmcloud.com/vulnerabilities/95673(af854a3a-2127-422b-91ae-364da2661108)
https://github.com/Jasig/dotnet-cas-client/commit/f0e030014fb7a39e5f38469f43199dc590fd0e8d(af854a3a-2127-422b-91ae-364da2661108)
https://github.com/Jasig/java-cas-client/commit/ae37092100c8eaec610dab6d83e5e05a8ee58814(af854a3a-2127-422b-91ae-364da2661108)
https://github.com/Jasig/phpCAS/blob/master/docs/ChangeLog(af854a3a-2127-422b-91ae-364da2661108)
https://github.com/Jasig/phpCAS/pull/125(af854a3a-2127-422b-91ae-364da2661108)
https://issues.jasig.org/browse/CASC-228(af854a3a-2127-422b-91ae-364da2661108)
https://www.debian.org/security/2014/dsa-3017.en.html(af854a3a-2127-422b-91ae-364da2661108)
https://www.mail-archive.com/cas-user%40lists.jasig.org/msg17338.html(af854a3a-2127-422b-91ae-364da2661108)

Correlations IOC

Aucune correlation enregistree

This product uses data from the NVD API but is not endorsed or certified by the NVD.