[Japanese]

JVNDB-2007-000548

Nessus report function vulnerable to arbitrary script execution

Overview

Nessus scanning report in HTML format contains the target server's responses against Nessus scanning. Nessus fails to properly handle the responses. This may cause a script to be executed on a user's web browser when the user views the report.

Nessus, a vulnerability scanner from Tenable Network Security, Inc., is capable of providing test reports in HTML format. The report in HTML format contains the target server's responses against Nessus scanning. Nessus fails to properly handle the responses. This may cause a script to be executed on a user's web browser when the user views the report.
CVSS Severity (What is CVSS?)

CVSS V2 Severity:
Base Metrics 5.7 (Medium) [IPA Score]
  • Access Vector: Network
  • Access Complexity: Medium
  • Authentication: None
  • Confidentiality Impact: Partial
  • Integrity Impact: Partial
  • Availability Impact: None
Affected Products


Tenable Network Security
  • Nessus 3.0.5 Windows and earlier

Impact

When a user views the Nessus report in HTML format, an arbitrary script may be executed in the user's web browser.
Solution

[Update the Software]

Apply the latest updates provided by the vendor.
Vendor Information

Tenable Network Security
CWE (What is CWE?)

CVE (What is CVE?)

References

  1. JVN : JVN#34058672
Revision History

  • [2008/05/21]
      Web page published

Date Public2007/07/20
Date First Published2008/05/21
Date Last Updated2008/05/21