CVE-2013-6786 - OpenCVE

Cross-site scripting (XSS) vulnerability in Allegro RomPager before 4.51, as used on the ZyXEL P660HW-D1, Huawei MT882, Sitecom WL-174, TP-LINK TD-8816, and D-Link DSL-2640R and DSL-2641R, when the "forbidden author header" protection mechanism is bypassed, allows remote attackers to inject arbitrary web script or HTML by requesting a nonexistent URI in conjunction with a crafted HTTP Referer header that is not properly handled in a 404 page. NOTE: there is no CVE for a "URL redirection" issue that some sources list separately.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact None

Integrity Impact Partial

Availability Impact None

AV:N/AC:M/Au:N/C:N/I:P/A:N

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Allegrosoft	Rompager
Dlink	Dsl-2640r Dsl-2641r
Huawei	Mt882
Sitecom	Wl-174
Tp-link	Td-8816
Zyxel	P-660hw D1

Configuration 1 [-]

OR	cpe:2.3:a:allegrosoft:rompager::::::::
	cpe:2.3:h:dlink:dsl-2640r:-:::::::*
	cpe:2.3:h:dlink:dsl-2641r:-:::::::*
	cpe:2.3:h:huawei:mt882:-:::::::*
	cpe:2.3:h:sitecom:wl-174:-:::::::*
	cpe:2.3:h:tp-link:td-8816:-:::::::*
	cpe:2.3:h:zyxel:p-660hw_d1:-:::::::*

No data.

References

Link	Providers
http://antoniovazquezblanco.github.io/docs/advisories/Advisory_RomPagerXSS.pdf
http://osvdb.org/99694
http://osvdb.org/ref/99/rompager407.pdf

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2014-01-16T19:00:00

Updated: 2024-08-06T17:46:23.308Z

Reserved: 2013-11-12T00:00:00

Link: CVE-2013-6786

Vulnrichment

No data.

NVD

Status : Analyzed

Published: 2014-01-16T19:55:04.607

Modified: 2023-04-26T18:55:30.893

Link: CVE-2013-6786

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2013-11-12T00:00:00", "descriptions": [{"lang": "en", "value": "Cross-site scripting (XSS) vulnerability in Allegro RomPager before 4.51, as used on the ZyXEL P660HW-D1, Huawei MT882, Sitecom WL-174, TP-LINK TD-8816, and D-Link DSL-2640R and DSL-2641R, when the \"forbidden author header\" protection mechanism is bypassed, allows remote attackers to inject arbitrary web script or HTML by requesting a nonexistent URI in conjunction with a crafted HTTP Referer header that is not properly handled in a 404 page. NOTE: there is no CVE for a \"URL redirection\" issue that some sources list separately."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2014-01-16T19:57:00", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"tags": ["x_refsource_MISC"], "url": "http://antoniovazquezblanco.github.io/docs/advisories/Advisory_RomPagerXSS.pdf"}, {"name": "99694", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://osvdb.org/99694"}, {"tags": ["x_refsource_MISC"], "url": "http://osvdb.org/ref/99/rompager407.pdf"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2013-6786", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Cross-site scripting (XSS) vulnerability in Allegro RomPager before 4.51, as used on the ZyXEL P660HW-D1, Huawei MT882, Sitecom WL-174, TP-LINK TD-8816, and D-Link DSL-2640R and DSL-2641R, when the \"forbidden author header\" protection mechanism is bypassed, allows remote attackers to inject arbitrary web script or HTML by requesting a nonexistent URI in conjunction with a crafted HTTP Referer header that is not properly handled in a 404 page. NOTE: there is no CVE for a \"URL redirection\" issue that some sources list separately."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "http://antoniovazquezblanco.github.io/docs/advisories/Advisory_RomPagerXSS.pdf", "refsource": "MISC", "url": "http://antoniovazquezblanco.github.io/docs/advisories/Advisory_RomPagerXSS.pdf"}, {"name": "99694", "refsource": "OSVDB", "url": "http://osvdb.org/99694"}, {"name": "http://osvdb.org/ref/99/rompager407.pdf", "refsource": "MISC", "url": "http://osvdb.org/ref/99/rompager407.pdf"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-06T17:46:23.308Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://antoniovazquezblanco.github.io/docs/advisories/Advisory_RomPagerXSS.pdf"}, {"name": "99694", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://osvdb.org/99694"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://osvdb.org/ref/99/rompager407.pdf"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2013-6786", "datePublished": "2014-01-16T19:00:00", "dateReserved": "2013-11-12T00:00:00", "dateUpdated": "2024-08-06T17:46:23.308Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:allegrosoft:rompager:*:*:*:*:*:*:*:*", "matchCriteriaId": "FDBB61DF-D173-4046-B619-C762147742A8", "versionEndIncluding": "4.07", "vulnerable": true}, {"criteria": "cpe:2.3:h:dlink:dsl-2640r:-:*:*:*:*:*:*:*", "matchCriteriaId": "3F29B74A-18E6-45AD-BACD-27AA2777DB70", "vulnerable": true}, {"criteria": "cpe:2.3:h:dlink:dsl-2641r:-:*:*:*:*:*:*:*", "matchCriteriaId": "62B6395E-1FEF-4F66-9B50-8E9038AD469A", "vulnerable": true}, {"criteria": "cpe:2.3:h:huawei:mt882:-:*:*:*:*:*:*:*", "matchCriteriaId": "0527EC70-2D03-4BEB-A1CB-F34DC1AB1BE8", "vulnerable": true}, {"criteria": "cpe:2.3:h:sitecom:wl-174:-:*:*:*:*:*:*:*", "matchCriteriaId": "85367E17-94F4-49B2-80D9-977AF0C52CD6", "vulnerable": true}, {"criteria": "cpe:2.3:h:tp-link:td-8816:-:*:*:*:*:*:*:*", "matchCriteriaId": "BE41D744-06A9-4522-B409-414E11483DD3", "vulnerable": true}, {"criteria": "cpe:2.3:h:zyxel:p-660hw_d1:-:*:*:*:*:*:*:*", "matchCriteriaId": "1D13FB1A-637D-4E69-B84F-05531DCA5769", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Cross-site scripting (XSS) vulnerability in Allegro RomPager before 4.51, as used on the ZyXEL P660HW-D1, Huawei MT882, Sitecom WL-174, TP-LINK TD-8816, and D-Link DSL-2640R and DSL-2641R, when the \"forbidden author header\" protection mechanism is bypassed, allows remote attackers to inject arbitrary web script or HTML by requesting a nonexistent URI in conjunction with a crafted HTTP Referer header that is not properly handled in a 404 page. NOTE: there is no CVE for a \"URL redirection\" issue that some sources list separately."}, {"lang": "es", "value": "Vulnerabilidad de XSS en Allegro RomPager anterior a la versi\u00f3n 4.51, tal y como se usa en ZyXEL P660HW-D1, Huawei MT882, Sitecom WL-174, TP-LINK TD-8816, y D-Link DSL-2640R y DSL-2641R, cuando los mecanismos de protecci\u00f3n \"forbidden author header\" son evadidos, permite a atacantes remotos inyectar script Web o HTML arbitrario mediante la petici\u00f3n de una URI no existente en conjunci\u00f3n con una cabecera HTTP Referer manipulada que no es manejada adecuadamente en una p\u00e1gina 404. NOTA: no hay CVE para una \"redirecci\u00f3n de URL\", que algunas fuentes enumeran por separado."}], "id": "CVE-2013-6786", "lastModified": "2023-04-26T18:55:30.893", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2014-01-16T19:55:04.607", "references": [{"source": "cve@mitre.org", "tags": ["Exploit"], "url": "http://antoniovazquezblanco.github.io/docs/advisories/Advisory_RomPagerXSS.pdf"}, {"source": "cve@mitre.org", "url": "http://osvdb.org/99694"}, {"source": "cve@mitre.org", "tags": ["Exploit"], "url": "http://osvdb.org/ref/99/rompager407.pdf"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-79"}], "source": "nvd@nist.gov", "type": "Primary"}]}