FKIE_CVE-2011-3642

Vulnerability from fkie_nvd - Published: 2020-02-08 16:15 - Updated: 2024-11-21 01:30
Severity ?
9.6 (Critical) - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
Summary
Cross-site scripting (XSS) vulnerability in Flowplayer Flash 3.2.7 through 3.2.16, as used in the News system (news) extension for TYPO3 and Mahara, allows remote attackers to inject arbitrary web script or HTML via the plugin configuration directive in a reference to an external domain plugin.
References
cve@mitre.orghttp://appsec.ws/Presentations/FlashFlooding.pdfBroken Link
cve@mitre.orghttp://secunia.com/advisories/52074Third Party Advisory
cve@mitre.orghttp://secunia.com/advisories/54206Third Party Advisory
cve@mitre.orghttp://secunia.com/advisories/58854Third Party Advisory
cve@mitre.orghttp://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2014-009Broken Link
cve@mitre.orghttp://web.appsec.ws/FlashExploitDatabase.phpBroken Link
cve@mitre.orghttps://bugs.launchpad.net/mahara/+bug/1103748Third Party Advisory
cve@mitre.orghttps://code.google.com/p/flowplayer-core/issues/detail?id=441Exploit, Third Party Advisory
cve@mitre.orghttps://mahara.org/interaction/forum/topic.php?id=5237Third Party Advisory
cve@mitre.orghttps://www.securityfocus.com/bid/48651Third Party Advisory, VDB Entry
af854a3a-2127-422b-91ae-364da2661108http://appsec.ws/Presentations/FlashFlooding.pdfBroken Link
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/52074Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/54206Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/58854Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2014-009Broken Link
af854a3a-2127-422b-91ae-364da2661108http://web.appsec.ws/FlashExploitDatabase.phpBroken Link
af854a3a-2127-422b-91ae-364da2661108https://bugs.launchpad.net/mahara/+bug/1103748Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108https://code.google.com/p/flowplayer-core/issues/detail?id=441Exploit, Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108https://mahara.org/interaction/forum/topic.php?id=5237Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.securityfocus.com/bid/48651Third Party Advisory, VDB Entry
Impacted products
Vendor Product Version
flowplayer flowplayer_flash *
flowplayer flowplayer_flash *
To clipboard 

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:flowplayer:flowplayer_flash:*:*:*:*:*:mahara:*:*",
              "matchCriteriaId": "74DC3F20-3F23-40A2-82A8-DEB42CF37795",
              "versionEndIncluding": "3.2.16",
              "versionStartIncluding": "3.2.7",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:flowplayer:flowplayer_flash:*:*:*:*:*:typo3:*:*",
              "matchCriteriaId": "F77B0CCD-EE16-4873-B428-2BEA95E41B67",
              "versionEndIncluding": "3.2.16",
              "versionStartIncluding": "3.2.7",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Cross-site scripting (XSS) vulnerability in Flowplayer Flash 3.2.7 through 3.2.16, as used in the News system (news) extension for TYPO3 and Mahara, allows remote attackers to inject arbitrary web script or HTML via the plugin configuration directive in a reference to an external domain plugin."
    },
    {
      "lang": "es",
      "value": "Una vulnerabilidad de tipo cross-site scripting (XSS) en Flowplayer Flash versiones 3.2.7 hasta 3.2.16, como es usado en la extensi\u00f3n News system (news) para TYPO3 y Mahara, permite a atacantes remotos inyectar script web o HTML arbitrario por medio de la directiva de configuraci\u00f3n del plugin en una referencia a un plugin de dominio externo."
    }
  ],
  "id": "CVE-2011-3642",
  "lastModified": "2024-11-21T01:30:54.310",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "MEDIUM",
        "cvssData": {
          "accessComplexity": "MEDIUM",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "PARTIAL",
          "baseScore": 6.8,
          "confidentialityImpact": "PARTIAL",
          "integrityImpact": "PARTIAL",
          "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
          "version": "2.0"
        },
        "exploitabilityScore": 8.6,
        "impactScore": 6.4,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": true
      }
    ],
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "HIGH",
          "baseScore": 9.6,
          "baseSeverity": "CRITICAL",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "NONE",
          "scope": "CHANGED",
          "userInteraction": "REQUIRED",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 2.8,
        "impactScore": 6.0,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ]
  },
  "published": "2020-02-08T16:15:10.447",
  "references": [
    {
      "source": "cve@mitre.org",
      "tags": [
        "Broken Link"
      ],
      "url": "http://appsec.ws/Presentations/FlashFlooding.pdf"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "http://secunia.com/advisories/52074"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "http://secunia.com/advisories/54206"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "http://secunia.com/advisories/58854"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Broken Link"
      ],
      "url": "http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2014-009"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Broken Link"
      ],
      "url": "http://web.appsec.ws/FlashExploitDatabase.php"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://bugs.launchpad.net/mahara/+bug/1103748"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Exploit",
        "Third Party Advisory"
      ],
      "url": "https://code.google.com/p/flowplayer-core/issues/detail?id=441"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://mahara.org/interaction/forum/topic.php?id=5237"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Third Party Advisory",
        "VDB Entry"
      ],
      "url": "https://www.securityfocus.com/bid/48651"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Broken Link"
      ],
      "url": "http://appsec.ws/Presentations/FlashFlooding.pdf"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "http://secunia.com/advisories/52074"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "http://secunia.com/advisories/54206"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "http://secunia.com/advisories/58854"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Broken Link"
      ],
      "url": "http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2014-009"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Broken Link"
      ],
      "url": "http://web.appsec.ws/FlashExploitDatabase.php"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://bugs.launchpad.net/mahara/+bug/1103748"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Exploit",
        "Third Party Advisory"
      ],
      "url": "https://code.google.com/p/flowplayer-core/issues/detail?id=441"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://mahara.org/interaction/forum/topic.php?id=5237"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory",
        "VDB Entry"
      ],
      "url": "https://www.securityfocus.com/bid/48651"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vulnStatus": "Modified",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-79"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or observed by the user.
  • Confirmed: The vulnerability has been validated from an analyst's perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
  • Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
  • Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
  • Not confirmed: The user expressed doubt about the validity of the vulnerability.
  • Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.



Detection rules are retrieved from Rulezet.