CVE-2004-2558
CVSS7.5
发布时间 :2004-12-31 00:00:00
修订时间 :2008-09-05 16:44:28
NMCOS    

[原文]Unspecified vulnerability in IBM Tivoli SecureWay Policy Director 3.8, Access Manager for e-business 3.9 to 5.1, Access Manager Identity Manager Solution 5.1, Configuration Manager 4.2, Configuration Manager for Automated Teller Machines 2.1.0, and IBM WebSphere Everyplace Server, Service Provider Offering for Multi-platforms 2.1.3 to 2.15 allow remote attackers to hijack sessions of authenticated users via unknown attack vectors involving certain cookies, aka "Potential Credential Impersonation Attack."


[CNNVD]IBM多个产品未明信任书伪造漏洞(CNNVD-200412-455)

        
        IBM包含多系列产品,如IBM Tivoli,IBM WebSphere等。
        IBM多个产品存在信任书伪造问题,远程攻击者可以利用这个漏洞访问资源和数据或可能控制应用程序。
        目前报告此问题可以使攻击者利用COOKIE或伪造其他信任用户未授权访问资源,目前没有详细漏洞细节提供。
        

- CVSS (基础分值)

CVSS分值: 7.5 [严重(HIGH)]
机密性影响: PARTIAL [很可能造成信息泄露]
完整性影响: PARTIAL [可能会导致系统文件被修改]
可用性影响: PARTIAL [可能会导致性能下降或中断资源访问]
攻击复杂度: LOW [漏洞利用没有访问限制 ]
攻击向量: [--]
身份认证: NONE [漏洞利用无需身份认证]

- CPE (受影响的平台与产品)

cpe:/a:ibm:websphere_everyplace_server:2.1.5IBM WebSphere Everyplace Server 2.15
cpe:/a:ibm:websphere_everyplace_server:2.1.4IBM WebSphere Everyplace Server 2.14
cpe:/a:ibm:websphere_everyplace_server:2.1.3IBM WebSphere Everyplace Server 2.13
cpe:/a:ibm:tivoli_access_manager_for_e-business:4.1IBM Tivoli Access Manager for e-business 4.1
cpe:/a:ibm:tivoli_secureway_policy_director:3.8IBM Tivoli SecureWay Policy Director 3.8
cpe:/a:ibm:tivoli_configuration_manager:4.2IBM Tivoli Configuration Manager 4.2
cpe:/a:ibm:tivoli_access_manager_for_e-business:3.9IBM Tivoli Access Manager for e-business 3.9
cpe:/a:ibm:tivoli_access_manager_identity_manager_solution:5.1IBM Tivoli Access Manager Identity Manager Solution 5.1
cpe:/a:ibm:tivoli_configuration_manager_for_atm:2.1IBM Tivoli Configuration Manager for ATM 2.1
cpe:/a:ibm:tivoli_access_manager_for_e-business:5.1IBM Tivoli Access Manager for e-business 5.1

- OVAL (用于检测的技术细节)

未找到相关OVAL定义

- 官方数据库链接

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-2558
(官方数据源) MITRE
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2004-2558
(官方数据源) NVD
http://www.cnnvd.org.cn/vulnerability/show/cv_cnnvdid/CNNVD-200412-455
(官方数据源) CNNVD

- 其它链接及资源

http://www.securityfocus.com/bid/10449
(PATCH)  BID  10449
http://www-1.ibm.com/support/docview.wss?uid=swg21168762
(VENDOR_ADVISORY)  CONFIRM  http://www-1.ibm.com/support/docview.wss?uid=swg21168762
http://xforce.iss.net/xforce/xfdb/16315
(UNKNOWN)  XF  ibm-cookie-session-hijack(16315)
http://secunia.com/advisories/11761
(VENDOR_ADVISORY)  SECUNIA  11761

- 漏洞信息

IBM多个产品未明信任书伪造漏洞
高危 未知
2004-12-31 00:00:00 2006-01-24 00:00:00
远程  
        
        IBM包含多系列产品,如IBM Tivoli,IBM WebSphere等。
        IBM多个产品存在信任书伪造问题,远程攻击者可以利用这个漏洞访问资源和数据或可能控制应用程序。
        目前报告此问题可以使攻击者利用COOKIE或伪造其他信任用户未授权访问资源,目前没有详细漏洞细节提供。
        

- 公告与补丁

        厂商补丁:
        IBM
        ---
        目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:
        IBM Tivoli Configuration Manager for ATM 2.1:
        IBM Patch 3.8-PWS-0016
        
        http://www-1.ibm.com/support/docview.wss?uid=swg24006478

        WebSEAL.
        IBM Tivoli SecureWay Policy Director 3.8:
        IBM Patch 3.8-PWS-0016
        
        http://www-1.ibm.com/support/docview.wss?uid=swg24006478

        IBM Tivoli Access Manager for e-business 3.9:
        IBM Patch 3.9-AWS-0007
        
        http://www-1.ibm.com/support/docview.wss?uid=swg24006460

        IBM Patch 3.9-WPI-0005
        
        http://www-1.ibm.com/support/docview.wss?uid=swg24006535

        Web Server Plug-in.
        IBM Tivoli Access Manager for e-business 4.1:
        IBM Patch 4.1-AWS-FP09
        
        http://www-1.ibm.com/support/docview.wss?uid=swg24006273

        WebSEAL.
        IBM Patch 4.1-WPI-0007
        
        http://www-1.ibm.com/support/docview.wss?uid=swg24006534

        Web Server Plug-in.
        IBM Tivoli Configuration Manager 4.2:
        IBM Patch 3.8-PWS-0016
        
        http://www-1.ibm.com/support/docview.wss?uid=swg24006478

        WebSEAL.
        IBM Tivoli Access Manager for e-business 5.1:
        IBM Patch 5.1-AWS-0001
        
        http://www-1.ibm.com/support/docview.wss?uid=swg24006477

        WebSEAL.
        IBM Patch 5.1-WPI-0001
        
        http://www-1.ibm.com/support/docview.wss?uid=swg24006533

        Web Server Plug-in.
        IBM Tivoli Access Manager Identity Manager Solution 5.1:
        IBM Patch 5.1-AWS-0001
        
        http://www-1.ibm.com/support/docview.wss?uid=swg24006477

        WebSEAL.
        IBM Patch 5.1-WPI-0001
        
        http://www-1.ibm.com/support/docview.wss?uid=swg24006533

        Plug-In for Web Server.
        WebSphere Everyplace Server补丁可联系供应商获得。

- 漏洞信息

6625
IBM Multiple Products Authentication Cookie Session Hijacking
Local Access Required Information Disclosure
Loss of Confidentiality

- 漏洞描述

Various IBM Tivoli applications contain a flaw that may lead to an unauthorized information disclosure. The issue is triggered from improper handling of cookies when the session is authenticated from a form, which could possibly disclose restricted or sensitive information resulting in a loss of confidentiality.

- 时间线

2004-06-02 Unknow
Unknow Unknow

- 解决方案

Currently, there are no known workarounds or upgrades to correct this issue. However, IBM has released patches to address this vulnerability.

- 相关参考

- 漏洞作者

Unknown or Incomplete

- 漏洞信息

IBM Multiple Product Unspecified Credential Impersonation Vulnerability
Unknown 10449
Yes No
2004-06-02 12:00:00 2004-06-02 12:00:00
This issue was disclosed by the vendor.

- 受影响的程序版本

IBM WebSphere Everyplace Server 2.15
IBM WebSphere Everyplace Server 2.14
IBM WebSphere Everyplace Server 2.1.3
IBM Tivoli SecureWay Policy Director 3.8
- HP HP-UX 11.0
- IBM AIX 4.3.3
- Microsoft Windows 2000 Professional SP3
- Microsoft Windows 2000 Professional SP2
- Microsoft Windows 2000 Professional SP1
- Microsoft Windows 2000 Professional
- Microsoft Windows NT 4.0 SP6a
- Microsoft Windows NT 4.0 SP5
- Microsoft Windows NT 4.0 SP4
- Microsoft Windows NT 4.0 SP3
- Microsoft Windows NT 4.0 SP2
- Microsoft Windows NT 4.0 SP1
- Microsoft Windows NT 4.0
- Sun Solaris 8_sparc
- Sun Solaris 7.0
IBM Tivoli Configuration Manager for ATM 2.1
IBM Tivoli Configuration Manager 4.2
IBM Tivoli Access Manager Identity Manager Solution 5.1
IBM Tivoli Access Manager for e-business 5.1
IBM Tivoli Access Manager for e-business 4.1
IBM Tivoli Access Manager for e-business 3.9

- 漏洞讨论

Multiple IBM products are prone to an unspecified credential impersonation vulnerability.

According to IBM this vulnerability may allow a remote attacker to gain access to resources and data, or gain control of the compromised application. It is reported that this attack can allow the attacker to exploit the usage of cookies and impersonate a legitimate user to gain unauthorized access.

Due to a lack of details, further information is not available at the moment. This BID will be updated as more information becomes available.

- 漏洞利用

Currently we are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: vuldb@securityfocus.com <mailto:vuldb@securityfocus.com>.

- 解决方案

WebSphere Everyplace Server fixes can be obtained by contacting the vendor.

IBM fixes are available:


IBM Tivoli Configuration Manager for ATM 2.1

IBM Tivoli Access Manager for e-business 3.9

IBM Tivoli Configuration Manager 4.2

- 相关参考

 

 

关于SCAP中文社区

SCAP中文社区是国内第一个以SCAP为主题的中文开放社区。了解更多信息,请查阅[关于本站]

版权声明

CVE/CWE/OVAL均为MITRE公司的注册商标,它们的官方数据源均保存在MITRE公司的相关网站