CVE-2016-3403 - Vulnerability Details - OpenCVE

Multiple cross-site request forgery (CSRF) vulnerabilities in the Admin Console in Zimbra Collaboration before 8.6.0 Patch 8 allow remote attackers to hijack the authentication of administrators for requests that (1) add, (2) modify, or (3) remove accounts by leveraging failure to use of a CSRF token and perform referer header checks, aka bugs 100885 and 100899.

No CVSS v4.0

No CVSS v3.1

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction Required

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Synacor	Zimbra Collaboration Suite

Configuration 1 [-]

cpe:2.3:a:synacor:zimbra_collaboration_suite:*:*:*:*:*:*:*:*

No data.

References

Link	Providers
http://seclists.org/fulldisclosure/2017/Jan/30
http://www.securityfocus.com/bid/95383
https://bugzilla.zimbra.com/show_bug.cgi?id=100885
https://bugzilla.zimbra.com/show_bug.cgi?id=100899
https://sysdream.com/news/lab/2017-01-12-cve-2016-3403-multiple-csrf-in-zimbra-administration-interface/
https://wiki.zimbra.com/wiki/Zimbra_Releases/8.6_Patch_8
https://wiki.zimbra.com/wiki/Zimbra_Releases/8.7.0
https://wiki.zimbra.com/wiki/Zimbra_Security_Advisories

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2017-05-17T14:00:00

Updated: 2024-08-05T23:56:13.367Z

Reserved: 2016-03-17T00:00:00

Link: CVE-2016-3403

Vulnrichment

No data.

NVD

Status : Modified

Published: 2017-05-17T14:29:00.290

Modified: 2024-11-21T02:49:55.850

Link: CVE-2016-3403

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2016-06-20T00:00:00", "descriptions": [{"lang": "en", "value": "Multiple cross-site request forgery (CSRF) vulnerabilities in the Admin Console in Zimbra Collaboration before 8.6.0 Patch 8 allow remote attackers to hijack the authentication of administrators for requests that (1) add, (2) modify, or (3) remove accounts by leveraging failure to use of a CSRF token and perform referer header checks, aka bugs 100885 and 100899."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-05-25T18:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "95383", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/95383"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://wiki.zimbra.com/wiki/Zimbra_Releases/8.6_Patch_8"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://bugzilla.zimbra.com/show_bug.cgi?id=100899"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://bugzilla.zimbra.com/show_bug.cgi?id=100885"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://wiki.zimbra.com/wiki/Zimbra_Releases/8.7.0"}, {"name": "20170112 [CVE-2016-3403] [Zimbra] Multiple CSRF in Administration interface - all versions", "tags": ["mailing-list", "x_refsource_FULLDISC"], "url": "http://seclists.org/fulldisclosure/2017/Jan/30"}, {"tags": ["x_refsource_MISC"], "url": "https://sysdream.com/news/lab/2017-01-12-cve-2016-3403-multiple-csrf-in-zimbra-administration-interface/"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://wiki.zimbra.com/wiki/Zimbra_Security_Advisories"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2016-3403", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Multiple cross-site request forgery (CSRF) vulnerabilities in the Admin Console in Zimbra Collaboration before 8.6.0 Patch 8 allow remote attackers to hijack the authentication of administrators for requests that (1) add, (2) modify, or (3) remove accounts by leveraging failure to use of a CSRF token and perform referer header checks, aka bugs 100885 and 100899."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "95383", "refsource": "BID", "url": "http://www.securityfocus.com/bid/95383"}, {"name": "https://wiki.zimbra.com/wiki/Zimbra_Releases/8.6_Patch_8", "refsource": "CONFIRM", "url": "https://wiki.zimbra.com/wiki/Zimbra_Releases/8.6_Patch_8"}, {"name": "https://bugzilla.zimbra.com/show_bug.cgi?id=100899", "refsource": "CONFIRM", "url": "https://bugzilla.zimbra.com/show_bug.cgi?id=100899"}, {"name": "https://bugzilla.zimbra.com/show_bug.cgi?id=100885", "refsource": "CONFIRM", "url": "https://bugzilla.zimbra.com/show_bug.cgi?id=100885"}, {"name": "https://wiki.zimbra.com/wiki/Zimbra_Releases/8.7.0", "refsource": "CONFIRM", "url": "https://wiki.zimbra.com/wiki/Zimbra_Releases/8.7.0"}, {"name": "20170112 [CVE-2016-3403] [Zimbra] Multiple CSRF in Administration interface - all versions", "refsource": "FULLDISC", "url": "http://seclists.org/fulldisclosure/2017/Jan/30"}, {"name": "https://sysdream.com/news/lab/2017-01-12-cve-2016-3403-multiple-csrf-in-zimbra-administration-interface/", "refsource": "MISC", "url": "https://sysdream.com/news/lab/2017-01-12-cve-2016-3403-multiple-csrf-in-zimbra-administration-interface/"}, {"name": "https://wiki.zimbra.com/wiki/Zimbra_Security_Advisories", "refsource": "CONFIRM", "url": "https://wiki.zimbra.com/wiki/Zimbra_Security_Advisories"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-05T23:56:13.367Z"}, "title": "CVE Program Container", "references": [{"name": "95383", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/95383"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://wiki.zimbra.com/wiki/Zimbra_Releases/8.6_Patch_8"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://bugzilla.zimbra.com/show_bug.cgi?id=100899"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://bugzilla.zimbra.com/show_bug.cgi?id=100885"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://wiki.zimbra.com/wiki/Zimbra_Releases/8.7.0"}, {"name": "20170112 [CVE-2016-3403] [Zimbra] Multiple CSRF in Administration interface - all versions", "tags": ["mailing-list", "x_refsource_FULLDISC", "x_transferred"], "url": "http://seclists.org/fulldisclosure/2017/Jan/30"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://sysdream.com/news/lab/2017-01-12-cve-2016-3403-multiple-csrf-in-zimbra-administration-interface/"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://wiki.zimbra.com/wiki/Zimbra_Security_Advisories"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2016-3403", "datePublished": "2017-05-17T14:00:00", "dateReserved": "2016-03-17T00:00:00", "dateUpdated": "2024-08-05T23:56:13.367Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:synacor:zimbra_collaboration_suite:*:*:*:*:*:*:*:*", "matchCriteriaId": "AB544961-B884-454E-AC8C-8E18E3B467DA", "versionEndIncluding": "8.6.0", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "Multiple cross-site request forgery (CSRF) vulnerabilities in the Admin Console in Zimbra Collaboration before 8.6.0 Patch 8 allow remote attackers to hijack the authentication of administrators for requests that (1) add, (2) modify, or (3) remove accounts by leveraging failure to use of a CSRF token and perform referer header checks, aka bugs 100885 and 100899."}, {"lang": "es", "value": "M\u00faltiples vulnerabilidades de tipo cross-site request forgery (CSRF) en la Consola Administrativa en Zimbra Collaboration anterior a versi\u00f3n 8.6.0 Parche 8, permiten a los atacantes remotos secuestrar la autenticaci\u00f3n de administradores para pedir que (1) agregue, (2) modifique o (3) elimine cuentas mediante el aprovechamiento de un fallo en el uso de un token CSRF y realizar comprobaciones de encabezado de referencia, tambi\u00e9n se conoce como errores 100885 y 100899."}], "id": "CVE-2016-3403", "lastModified": "2024-11-21T02:49:55.850", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": true}], "cvssMetricV30": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.0"}, "exploitabilityScore": 2.8, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2017-05-17T14:29:00.290", "references": [{"source": "cve@mitre.org", "tags": ["Exploit", "Third Party Advisory", "VDB Entry"], "url": "http://seclists.org/fulldisclosure/2017/Jan/30"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://www.securityfocus.com/bid/95383"}, {"source": "cve@mitre.org", "tags": ["Issue Tracking"], "url": "https://bugzilla.zimbra.com/show_bug.cgi?id=100885"}, {"source": "cve@mitre.org", "tags": ["Issue Tracking"], "url": "https://bugzilla.zimbra.com/show_bug.cgi?id=100899"}, {"source": "cve@mitre.org", "tags": ["Exploit", "Third Party Advisory"], "url": "https://sysdream.com/news/lab/2017-01-12-cve-2016-3403-multiple-csrf-in-zimbra-administration-interface/"}, {"source": "cve@mitre.org", "tags": ["Patch", "Release Notes"], "url": "https://wiki.zimbra.com/wiki/Zimbra_Releases/8.6_Patch_8"}, {"source": "cve@mitre.org", "tags": ["Release Notes"], "url": "https://wiki.zimbra.com/wiki/Zimbra_Releases/8.7.0"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "https://wiki.zimbra.com/wiki/Zimbra_Security_Advisories"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Exploit", "Third Party Advisory", "VDB Entry"], "url": "http://seclists.org/fulldisclosure/2017/Jan/30"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://www.securityfocus.com/bid/95383"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Issue Tracking"], "url": "https://bugzilla.zimbra.com/show_bug.cgi?id=100885"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Issue Tracking"], "url": "https://bugzilla.zimbra.com/show_bug.cgi?id=100899"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Exploit", "Third Party Advisory"], "url": "https://sysdream.com/news/lab/2017-01-12-cve-2016-3403-multiple-csrf-in-zimbra-administration-interface/"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch", "Release Notes"], "url": "https://wiki.zimbra.com/wiki/Zimbra_Releases/8.6_Patch_8"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Release Notes"], "url": "https://wiki.zimbra.com/wiki/Zimbra_Releases/8.7.0"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "https://wiki.zimbra.com/wiki/Zimbra_Security_Advisories"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-352"}], "source": "nvd@nist.gov", "type": "Primary"}]}