CVE-2012-4604 - Vulnerability Details - OpenCVE

The TRITON management console in Websense Web Security before 7.6 Hotfix 24 allows remote attackers to bypass authentication and read arbitrary reports via a crafted uid field, in conjunction with a crafted userRoles field, in a cookie, as demonstrated by a request to explorer_wse/favorites.exe.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact Partial

Integrity Impact None

Availability Impact None

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Websense	Websense Web Security

Configuration 1 [-]

OR	cpe:2.3:a:websense:websense_web_security::::::::
	cpe:2.3:a:websense:websense_web_security:6.3.0:::::::*
	cpe:2.3:a:websense:websense_web_security:6.3.1:::::::*
	cpe:2.3:a:websense:websense_web_security:6.3.2:::::::*
	cpe:2.3:a:websense:websense_web_security:6.3.3:::::::*
	cpe:2.3:a:websense:websense_web_security:7.0:::::::*
	cpe:2.3:a:websense:websense_web_security:7.1:::::::*
	cpe:2.3:a:websense:websense_web_security:7.1.1:::::::*
	cpe:2.3:a:websense:websense_web_security:7.5:::::::*
	cpe:2.3:a:websense:websense_web_security:7.5.1:::::::*

No data.

References

Link	Providers
http://www.securityfocus.com/archive/1/522530

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2012-08-23T10:00:00Z

Updated: 2024-09-16T20:47:54.682Z

Reserved: 2012-08-23T00:00:00Z

Link: CVE-2012-4604

Vulnrichment

No data.

NVD

Status : Modified

Published: 2012-08-23T10:32:15.047

Modified: 2024-11-21T01:43:14.570

Link: CVE-2012-4604

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "descriptions": [{"lang": "en", "value": "The TRITON management console in Websense Web Security before 7.6 Hotfix 24 allows remote attackers to bypass authentication and read arbitrary reports via a crafted uid field, in conjunction with a crafted userRoles field, in a cookie, as demonstrated by a request to explorer_wse/favorites.exe."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2012-08-23T10:00:00Z", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "20120430 NGS00138 Technical Advisory: Websense Triton 7.6 - authentication bypass in report management UI", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://www.securityfocus.com/archive/1/522530"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2012-4604", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "The TRITON management console in Websense Web Security before 7.6 Hotfix 24 allows remote attackers to bypass authentication and read arbitrary reports via a crafted uid field, in conjunction with a crafted userRoles field, in a cookie, as demonstrated by a request to explorer_wse/favorites.exe."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "20120430 NGS00138 Technical Advisory: Websense Triton 7.6 - authentication bypass in report management UI", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/522530"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-06T20:42:54.702Z"}, "title": "CVE Program Container", "references": [{"name": "20120430 NGS00138 Technical Advisory: Websense Triton 7.6 - authentication bypass in report management UI", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://www.securityfocus.com/archive/1/522530"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2012-4604", "datePublished": "2012-08-23T10:00:00Z", "dateReserved": "2012-08-23T00:00:00Z", "dateUpdated": "2024-09-16T20:47:54.682Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:websense:websense_web_security:*:*:*:*:*:*:*:*", "matchCriteriaId": "34E69380-D772-4D64-84C5-01A386E11484", "versionEndIncluding": "7.6", "vulnerable": true}, {"criteria": "cpe:2.3:a:websense:websense_web_security:6.3.0:*:*:*:*:*:*:*", "matchCriteriaId": "42C4583F-0A0F-4CD8-BCE5-79D63A00540B", "vulnerable": true}, {"criteria": "cpe:2.3:a:websense:websense_web_security:6.3.1:*:*:*:*:*:*:*", "matchCriteriaId": "7DE86A75-E3BB-446E-B342-F07125B0BFF8", "vulnerable": true}, {"criteria": "cpe:2.3:a:websense:websense_web_security:6.3.2:*:*:*:*:*:*:*", "matchCriteriaId": "34695378-95E6-4A56-B724-07025B73F493", "vulnerable": true}, {"criteria": "cpe:2.3:a:websense:websense_web_security:6.3.3:*:*:*:*:*:*:*", "matchCriteriaId": "73886536-436E-4A38-99F8-BFD378D2B4B3", "vulnerable": true}, {"criteria": "cpe:2.3:a:websense:websense_web_security:7.0:*:*:*:*:*:*:*", "matchCriteriaId": "885485B8-D5F5-4094-8CDC-008F377CA492", "vulnerable": true}, {"criteria": "cpe:2.3:a:websense:websense_web_security:7.1:*:*:*:*:*:*:*", "matchCriteriaId": "3E936379-C123-43B7-BFDC-BAEFADF2378F", "vulnerable": true}, {"criteria": "cpe:2.3:a:websense:websense_web_security:7.1.1:*:*:*:*:*:*:*", "matchCriteriaId": "161E18C4-3302-4420-8A1C-FB08B043D536", "vulnerable": true}, {"criteria": "cpe:2.3:a:websense:websense_web_security:7.5:*:*:*:*:*:*:*", "matchCriteriaId": "72741B37-B3E8-48B5-956E-FF455642531D", "vulnerable": true}, {"criteria": "cpe:2.3:a:websense:websense_web_security:7.5.1:*:*:*:*:*:*:*", "matchCriteriaId": "756CE82D-8583-441F-A9DB-6E0EAB6EDA3F", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "The TRITON management console in Websense Web Security before 7.6 Hotfix 24 allows remote attackers to bypass authentication and read arbitrary reports via a crafted uid field, in conjunction with a crafted userRoles field, in a cookie, as demonstrated by a request to explorer_wse/favorites.exe."}, {"lang": "es", "value": "La consola de gesti\u00f3n de TRITON en Websense Web Security anterior a v7.6 Hotfix 24 permite a atacantes remotos saltarse la autenticaci\u00f3n y leer informes arbitrarios a trav\u00e9s de un campo uid manipulado, en conjunci\u00f3n con un campo userRoles manipulado, en una (cookie), como se demuestra por medio de una solicitud a explorer_wse/favorites.exe."}], "id": "CVE-2012-4604", "lastModified": "2024-11-21T01:43:14.570", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2012-08-23T10:32:15.047", "references": [{"source": "cve@mitre.org", "tags": ["Exploit"], "url": "http://www.securityfocus.com/archive/1/522530"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Exploit"], "url": "http://www.securityfocus.com/archive/1/522530"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-287"}], "source": "nvd@nist.gov", "type": "Primary"}]}