SB2018021501 - Multiple vulnerabilities in Dell EMC Isilon OneFS

Main Vulnerability Database SB2018021501

SB2018021501 - Multiple vulnerabilities in Dell EMC Isilon OneFS

Published: February 15, 2018

Security Bulletin ID SB2018021501

Severity

High

Patch available

YES

Number of vulnerabilities 9

Exploitation vector Remote access

Highest impact Code execution

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 9 secuirty vulnerabilities.

1) Cross-site scripting (CVE-ID: CVE-2018-1201)

The disclosed vulnerability allows a remote attacker to perform cross-site scripting (XSS) attacks.

The vulnerability exists due to insufficient sanitization of user-supplied data. A remote attacker can trick the victim to follow a specially crafted link and execute arbitrary HTML and script code in user's browser in context of vulnerable website.

Successful exploitation of this vulnerability may allow a remote attacker to steal potentially sensitive information, change appearance of the web page, perform phishing and drive-by-download attacks.

2) Cross-site scripting (CVE-ID: CVE-2018-1202)

The disclosed vulnerability allows a remote attacker to perform cross-site scripting (XSS) attacks.

The vulnerability exists due to insufficient sanitization of user-supplied data by the NDMP page. A remote attacker can trick the victim to follow a specially crafted link and execute arbitrary HTML and script code in user's browser in context of vulnerable website.

Successful exploitation of this vulnerability may allow a remote attacker to steal potentially sensitive information, change appearance of the web page, perform phishing and drive-by-download attacks.

3) Cross-site scripting (CVE-ID: CVE-2018-1189)

The disclosed vulnerability allows a remote attacker to perform cross-site scripting (XSS) attacks.

The vulnerability exists due to insufficient sanitization of user-supplied data by the Antivirus page. A remote attacker can trick the victim to follow a specially crafted link and execute arbitrary HTML and script code in user's browser in context of vulnerable website.

Successful exploitation of this vulnerability may allow a remote attacker to steal potentially sensitive information, change appearance of the web page, perform phishing and drive-by-download attacks.

4) Cross-site scripting (CVE-ID: CVE-2018-1188)

The disclosed vulnerability allows a remote attacker to perform cross-site scripting (XSS) attacks.

The vulnerability exists due to insufficient sanitization of user-supplied data by the Authentication Providers page. A remote attacker can trick the victim to follow a specially crafted link and execute arbitrary HTML and script code in user's browser in context of vulnerable website.

Successful exploitation of this vulnerability may allow a remote attacker to steal potentially sensitive information, change appearance of the web page, perform phishing and drive-by-download attacks.

5) Cross-site scripting (CVE-ID: CVE-2018-1187)

The disclosed vulnerability allows a remote attacker to perform cross-site scripting (XSS) attacks.

The vulnerability exists due to insufficient sanitization of user-supplied data in the Network Configuration page. A remote attacker can trick the victim to follow a specially crafted link and execute arbitrary HTML and script code in user's browser in context of vulnerable website.

Successful exploitation of this vulnerability may allow a remote attacker to steal potentially sensitive information, change appearance of the web page, perform phishing and drive-by-download attacks.

6) Cross-site scripting (CVE-ID: CVE-2018-1186)

The disclosed vulnerability allows a remote attacker to perform cross-site scripting (XSS) attacks.

The vulnerability exists due to insufficient sanitization of user-supplied data by the cluster description. A remote attacker can trick the victim to follow a specially crafted link and execute arbitrary HTML and script code in user's browser in context of vulnerable website.

Successful exploitation of this vulnerability may allow a remote attacker to steal potentially sensitive information, change appearance of the web page, perform phishing and drive-by-download attacks.

7) Privilege escalation (CVE-ID: CVE-2018-1204)

The vulnerability allows a remote attacker to gain elevated privileges on the target system.

The weakness exists due to a path traversal when reading the script file to run. A remote attacker can use remote support scripts to execute arbitrary python code with root privileges.

8) Privilege escalation (CVE-ID: CVE-2018-1203)

The vulnerability allows a local attacker to gain elevated privileges on the target system.

The weakness exists due to incorrect sudo permissions. A local attacker can instruct tcpdump to run shell commands when rotating capture files and gain root privileges.

9) Cross-site request forgery (CVE-ID: CVE-2018-1213)

The vulnerability allows a remote attacker to perform CSRF attack.

The weakness exists due to improper validation of user-supplied input by the Web interface. A remote attacker can create a specially crafted HTTP request, trick the victim into visiting it, gain elevated privileges, perform cross-site scripting attacks, Web cache poisoning, and other malicious activities.

Remediation

Install update from vendor's website.

References

https://www.coresecurity.com/advisories/dell-emc-isilon-onefs-multiple-vulnerabilities