CVE-2016-9470

Опубликовано: 28 мар. 2017

Источник: nvd

CVSS3: 9

CVSS2: 9.3

EPSS Низкий

Описание

Revive Adserver before 3.2.5 and 4.0.0 suffers from Reflected File Download. www/delivery/asyncspc.php was vulnerable to the fairly new Reflected File Download (RFD) web attack vector that enables attackers to gain complete control over a victim's machine by virtually downloading a file from a trusted domain.

Ссылки

https://github.com/revive-adserver/revive-adserver/commit/69aacbd2
Patch
Third Party Advisory
https://hackerone.com/reports/148745
Permissions Required
https://www.revive-adserver.com/security/revive-sa-2016-002/
Patch
Vendor Advisory
https://github.com/revive-adserver/revive-adserver/commit/69aacbd2
Patch
Third Party Advisory
https://hackerone.com/reports/148745
Permissions Required
https://www.revive-adserver.com/security/revive-sa-2016-002/
Patch
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:revive-adserver:revive_adserver:*:*:*:*:*:*:*:*

Версия до 3.2.4 (включая)

cpe:2.3:a:revive-adserver:revive_adserver:4.0.0:*:*:*:*:*:*:*

EPSS

Процентиль: 67%

0.0054

Низкий

9 Critical

CVSS3

9.3 Critical

CVSS2

Дефекты

CWE-79

CWE-254

Связанные уязвимости

GHSA-w7w6-m6q3-r777