Revive Adserver up to 3.2.4/4.0.0 Username Control Character unknown vulnerability

entryeditHistoryDiffjsonxmlCTI

A vulnerability classified as critical was found in Revive Adserver up to 3.2.4/4.0.0 (Advertising Software). Affected by this vulnerability is an unknown part of the component Username Handler. Upgrading to version 3.2.5 eliminates this vulnerability.

Timeline

The analysis of the timeline helps to identify the required approach and handling of single vulnerabilities and vulnerability collections. This overview makes it possible to see less important slices and more severe hotspots at a glance. Initiating immediate vulnerability response and prioritizing of issues is possible.

User

Field

Commit Conf

Approve Conf

IDCommitedUserFieldChangeRemarksModeratedReasonC
654586708/23/2020VulD...osvdb_titleCVE-2016-9471 - Revive Adserver - Spoofing Issue08/23/2020accepted100
654582108/23/2020VulD...discoverydate147502080008/23/2020accepted100
654587703/28/2017VulD...cvss3_nvd_basescore3.1nist.gov03/28/2017accepted90
654587603/28/2017VulD...0day_days18003/28/2017accepted90
654587503/28/2017VulD...cvss3_vuldb_rcX03/28/2017accepted90
654587403/28/2017VulD...cvss3_vuldb_rlO03/28/2017accepted90
654587303/28/2017VulD...cvss3_vuldb_eX03/28/2017accepted90
654587203/28/2017VulD...cvss2_vuldb_rcND03/28/2017accepted90
654587103/28/2017VulD...cvss2_vuldb_rlOF03/28/2017accepted90
654587003/28/2017VulD...cvss2_vuldb_eND03/28/2017accepted90
654586903/28/2017VulD...locationWebsite03/28/2017accepted90
654586803/28/2017VulD...seealso98984 9898203/28/2017accepted100
654586603/28/2017VulD...cve_nvd_summaryRevive Adserver before 3.2.5 and 4.0.0 suffers from Special Element Injection. Usernames weren't properly sanitised when creating users on a Revive Adserver instance. Especially, control characters were not filtered, allowing apparently identical usernames to co-exist in the system, due to the fact that such characters are normally ignored when an HTML page is displayed in a browser. The issue could have therefore been exploited for user spoofing, although elevated privileges are required to create users within Revive Adserver.mitre.org03/28/2017accepted100
654586503/28/2017VulD...cve_nvd_published1490572800mitre.org03/28/2017accepted100
654586403/28/2017VulD...cve_assigned1479513600mitre.org03/28/2017accepted100
654586303/28/2017VulD...cveCVE-2016-9471mitre.org03/28/2017accepted100
654586203/28/2017VulD...upgrade_version3.2.503/28/2017accepted100
654586103/28/2017VulD...nameUpgrade03/28/2017accepted100
654586003/28/2017VulD...price_0day$0-$5ksee documentation03/28/2017accepted100
654585903/28/2017VulD...urlhttps://github.com/revive-adserver/revive-adserver/commit/05b1ecebgithub.com03/28/2017accepted100

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!