CVE-2013-2997 - OpenCVE

IBM Security AppScan Enterprise before 8.7 does not invalidate the session context upon a logout action, which allows remote attackers to hijack sessions by leveraging an unattended workstation.

No CVSS v3.1

No CVSS v3.0

Access Vector Local

Access Complexity Low

Authentication Single

Confidentiality Impact Partial

Integrity Impact None

Availability Impact None

AV:L/AC:L/Au:S/C:P/I:N/A:N

Vendors & Products
CPE Configurations

Vendors	Products
Ibm	Security Appscan

Configuration 1 [-]

OR	cpe:2.3:a:ibm:security_appscan::-:enterprise:::::
	cpe:2.3:a:ibm:security_appscan:5.6.0.0:-:enterprise:::::*
	cpe:2.3:a:ibm:security_appscan:6.0.0.0:-:enterprise:::::*
	cpe:2.3:a:ibm:security_appscan:6.0.1.0:-:enterprise:::::*
	cpe:2.3:a:ibm:security_appscan:6.0.2.0:-:enterprise:::::*
	cpe:2.3:a:ibm:security_appscan:6.1.1.0:-:enterprise:::::*
	cpe:2.3:a:ibm:security_appscan:8.0.0.0:-:enterprise:::::*
	cpe:2.3:a:ibm:security_appscan:8.0.0.1:-:enterprise:::::*
	cpe:2.3:a:ibm:security_appscan:8.0.0.2:-:enterprise:::::*
	cpe:2.3:a:ibm:security_appscan:8.0.1.0:-:enterprise:::::*
	cpe:2.3:a:ibm:security_appscan:8.0.1.1:-:enterprise:::::*
	cpe:2.3:a:ibm:security_appscan:8.0.11:-:enterprise:::::*
	cpe:2.3:a:ibm:security_appscan:8.5.0.0:-:enterprise:::::*
	cpe:2.3:a:ibm:security_appscan:8.5.0.1:-:enterprise:::::*
	cpe:2.3:a:ibm:security_appscan:8.6.0.0:-:enterprise:::::*
	cpe:2.3:a:ibm:security_appscan:8.6.0.1:-:enterprise:::::*

References

Link	Resource
http://www-01.ibm.com/support/docview.wss?uid=swg21640352	Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/84066

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: ibm

Published: 2013-09-08T16:00:00

Updated: 2017-08-28T12:57:01

Reserved: 2013-04-12T00:00:00

Link: CVE-2013-2997

JSON object: View

NVD Information

Status : Modified

Published: 2013-09-08T16:55:06.583

Modified: 2017-08-29T01:33:19.230

Link: CVE-2013-2997

JSON object: View

Redhat Information

No data.

CWE

CWE-264

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2013-06-14T00:00:00", "descriptions": [{"lang": "en", "value": "IBM Security AppScan Enterprise before 8.7 does not invalidate the session context upon a logout action, which allows remote attackers to hijack sessions by leveraging an unattended workstation."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-08-28T12:57:01", "orgId": "9a959283-ebb5-44b6-b705-dcc2bbced522", "shortName": "ibm"}, "references": [{"tags": ["x_refsource_CONFIRM"], "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21640352"}, {"name": "appscan-cve20132997-session-impersonation(84066)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/84066"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "psirt@us.ibm.com", "ID": "CVE-2013-2997", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "IBM Security AppScan Enterprise before 8.7 does not invalidate the session context upon a logout action, which allows remote attackers to hijack sessions by leveraging an unattended workstation."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "http://www-01.ibm.com/support/docview.wss?uid=swg21640352", "refsource": "CONFIRM", "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21640352"}, {"name": "appscan-cve20132997-session-impersonation(84066)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/84066"}]}}}}, "cveMetadata": {"assignerOrgId": "9a959283-ebb5-44b6-b705-dcc2bbced522", "assignerShortName": "ibm", "cveId": "CVE-2013-2997", "datePublished": "2013-09-08T16:00:00", "dateReserved": "2013-04-12T00:00:00", "dateUpdated": "2017-08-28T12:57:01", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:ibm:security_appscan:*:-:enterprise:*:*:*:*:*", "matchCriteriaId": "A30D67CC-8400-4735-8904-EEF034A49E10", "versionEndIncluding": "8.6.0.2", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:security_appscan:5.6.0.0:-:enterprise:*:*:*:*:*", "matchCriteriaId": "39FC4232-1329-41F1-BA0A-14132DCDB742", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:security_appscan:6.0.0.0:-:enterprise:*:*:*:*:*", "matchCriteriaId": "5D0878E6-3440-4964-B48C-FBBD12114E7C", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:security_appscan:6.0.1.0:-:enterprise:*:*:*:*:*", "matchCriteriaId": "22B9EADC-4DEE-457C-895E-01B6AE21EFF2", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:security_appscan:6.0.2.0:-:enterprise:*:*:*:*:*", "matchCriteriaId": "B5AC6947-C345-417C-BD16-69B2D676B0B1", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:security_appscan:6.1.1.0:-:enterprise:*:*:*:*:*", "matchCriteriaId": "145F339B-862C-44AC-9888-3540EE71863D", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:security_appscan:8.0.0.0:-:enterprise:*:*:*:*:*", "matchCriteriaId": "A1B610D1-259B-4302-B53C-122B28DC9C3E", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:security_appscan:8.0.0.1:-:enterprise:*:*:*:*:*", "matchCriteriaId": "118823C5-6169-41E3-BD9D-707A11ABF6D0", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:security_appscan:8.0.0.2:-:enterprise:*:*:*:*:*", "matchCriteriaId": "FABD7F3A-218B-4C5B-9C59-B70DF12B2636", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:security_appscan:8.0.1.0:-:enterprise:*:*:*:*:*", "matchCriteriaId": "46D2DFF5-9C7D-4DE6-BF50-6AF81384DF74", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:security_appscan:8.0.1.1:-:enterprise:*:*:*:*:*", "matchCriteriaId": "13510F33-FB13-48FA-9D2C-82D633A3C49E", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:security_appscan:8.0.11:-:enterprise:*:*:*:*:*", "matchCriteriaId": "D5019192-0D6B-4BD3-9B51-F1B967F241DA", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:security_appscan:8.5.0.0:-:enterprise:*:*:*:*:*", "matchCriteriaId": "F8F320A3-9317-4FDA-B1FB-64B70393802D", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:security_appscan:8.5.0.1:-:enterprise:*:*:*:*:*", "matchCriteriaId": "757704EA-B054-4D1C-808F-4EFF34CDB4D9", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:security_appscan:8.6.0.0:-:enterprise:*:*:*:*:*", "matchCriteriaId": "4EE41CC5-24F1-44D3-A881-628B049C242C", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:security_appscan:8.6.0.1:-:enterprise:*:*:*:*:*", "matchCriteriaId": "63B20082-EA17-4BE9-AC60-1B8DA726C4A5", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "IBM Security AppScan Enterprise before 8.7 does not invalidate the session context upon a logout action, which allows remote attackers to hijack sessions by leveraging an unattended workstation."}, {"lang": "es", "value": "IBM Security AppScan Enterprise anteriores a 8.7 no invalida el contexto de sesi\u00f3n en una acci\u00f3n de cierre de sesi\u00f3n, lo que permite a atacantes remotos secuestrar sesiones aprovechando estaciones de trabajo desatendidas."}], "id": "CVE-2013-2997", "lastModified": "2017-08-29T01:33:19.230", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "LOW", "cvssData": {"accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "SINGLE", "availabilityImpact": "NONE", "baseScore": 1.7, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:S/C:P/I:N/A:N", "version": "2.0"}, "exploitabilityScore": 3.1, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2013-09-08T16:55:06.583", "references": [{"source": "psirt@us.ibm.com", "tags": ["Vendor Advisory"], "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21640352"}, {"source": "psirt@us.ibm.com", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/84066"}], "sourceIdentifier": "psirt@us.ibm.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-264"}], "source": "nvd@nist.gov", "type": "Primary"}]}