CVE-2013-6618

jsdm/ajax/port.php in J-Web in Juniper Junos before 10.4R13, 11.4 before 11.4R7, 12.1 before 12.1R5, 12.2 before 12.2R3, and 12.3 before 12.3R1 allows remote authenticated users to execute arbitrary commands via the rsargs parameter in an exec action.

CVSS v2.0 9.0 HIGH

9.0^/10

CVSS v2.0 : HIGH

V2 Legend

Vector : AV:N/AC:L/Au:S/C:C/I:C/A:C

Exploitability : 8.0 / Impact : 10.0

Access Vector NETWORK

Access Complexity LOW

Authentication SINGLE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References

Link	Resource
http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10560	Vendor Advisory
http://secunia.com/advisories/54731	Vendor Advisory
http://www.senseofsecurity.com.au/advisories/SOS-13-003	Exploit
http://www.securitytracker.com/id/1029016
http://www.securityfocus.com/bid/62305	Exploit
http://www.exploit-db.com/exploits/29544
https://exchange.xforce.ibmcloud.com/vulnerabilities/87011

Configurations

Configuration 1 (hide)

OR	cpe:2.3:o:juniper:junos::::::::
	cpe:2.3:o:juniper:junos:10.3:::::::*
	cpe:2.3:o:juniper:junos:12.1:::::::*
	cpe:2.3:o:juniper:junos:12.2:::::::*
	cpe:2.3:o:juniper:junos:10.2:::::::*
	cpe:2.3:o:juniper:junos:10.1:::::::*
	cpe:2.3:o:juniper:junos:10.0:::::::*
	cpe:2.3:o:juniper:junos:12.3:::::::*
	cpe:2.3:o:juniper:junos:11.4:::::::*

Information

Published : 2013-11-05 12:55

Updated : 2017-08-28 18:33

NVD link : CVE-2013-6618

Mitre link : CVE-2013-6618

JSON object : View

CWE

CWE-20

Improper Input Validation

Products Affected

juniper

junos

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10560", "name": "http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10560", "tags": ["Vendor Advisory"], "refsource": "CONFIRM"}, {"url": "http://secunia.com/advisories/54731", "name": "54731", "tags": ["Vendor Advisory"], "refsource": "SECUNIA"}, {"url": "http://www.senseofsecurity.com.au/advisories/SOS-13-003", "name": "http://www.senseofsecurity.com.au/advisories/SOS-13-003", "tags": ["Exploit"], "refsource": "MISC"}, {"url": "http://www.securitytracker.com/id/1029016", "name": "1029016", "tags": [], "refsource": "SECTRACK"}, {"url": "http://www.securityfocus.com/bid/62305", "name": "62305", "tags": ["Exploit"], "refsource": "BID"}, {"url": "http://www.exploit-db.com/exploits/29544", "name": "29544", "tags": [], "refsource": "EXPLOIT-DB"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/87011", "name": "juniper-port-command-execution(87011)", "tags": [], "refsource": "XF"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "jsdm/ajax/port.php in J-Web in Juniper Junos before 10.4R13, 11.4 before 11.4R7, 12.1 before 12.1R5, 12.2 before 12.2R3, and 12.3 before 12.3R1 allows remote authenticated users to execute arbitrary commands via the rsargs parameter in an exec action."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "CWE-20"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2013-6618", "ASSIGNER": "cve@mitre.org"}}, "impact": {"baseMetricV2": {"cvssV2": {"version": "2.0", "baseScore": 9.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:S/C:C/I:C/A:C", "authentication": "SINGLE", "integrityImpact": "COMPLETE", "accessComplexity": "LOW", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "severity": "HIGH", "impactScore": 10.0, "obtainAllPrivilege": false, "exploitabilityScore": 8.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}}, "publishedDate": "2013-11-05T20:55Z", "configurations": {"nodes": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:o:juniper:junos:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndIncluding": "10.4"}, {"cpe23Uri": "cpe:2.3:o:juniper:junos:10.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:juniper:junos:12.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:juniper:junos:12.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:juniper:junos:10.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:juniper:junos:10.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:juniper:junos:10.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:juniper:junos:12.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:juniper:junos:11.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2017-08-29T01:33Z"}

9.0 /10