製品・ソフトウェアに関する情報

JVN脆弱性詳細

Support Incident Tracker に複数の脆弱性

Title	Support Incident Tracker に複数の脆弱性
Summary	Support Incident Tracker (SiT!) には、複数の脆弱性が存在します。 SiT! には、悪意あるファイルのアップロード、SQL インジェクション、クロスサイトスクリプティング、クロスサイトリクエストフォージェリの脆弱性が存在します。
Possible impacts	第三者により、ウェブサーバへ悪意あるファイルをアップロードされたり、ログインしているユーザの権限で SQL コマンドが実行されたり、ユーザのウェブブラウザ上で任意のスクリプトが実行されるなどの可能性があります。
Solution	2011年12月5日現在、対策方法はありません。
Publication Date	Dec. 5, 2011, midnight
Registration Date	Dec. 27, 2011, 9:42 a.m.
Last Update	Dec. 27, 2011, 9:42 a.m.

Affected System

The Support Incident Tracker Project

SiT! バージョン 3.65 およびそれ以前

CVE (情報セキュリティ共通脆弱性識別子)

No	Name	URL
Common Vulnerabilities and Exposures (CVE)
1	CVE-2011-3831	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3831
2	CVE-2011-3833	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3833
3	CVE-2011-5067	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-5067
4	CVE-2011-5068	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-5068
5	CVE-2011-5069	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-5069
6	CVE-2011-5070	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-5070
National Vulnerability Database (NVD)
7	CVE-2011-3831	http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-3831
8	CVE-2011-3833	http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-3833
9	CVE-2011-5067	http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-5067
10	CVE-2011-5068	http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-5068
11	CVE-2011-5069	http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-5069
12	CVE-2011-5070	http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-5070

ベンダー情報

No	Name	URL
The Support Incident Tracker Project
1	SiT! Support Incident Tracker	http://sitracker.org/

その他

No	Name	URL
JVN
1	JVNVU#576355	http://jvn.jp/cert/JVNVU576355/
US-CERT Vulnerability Note
2	VU#576355	http://www.kb.cert.org/vuls/id/576355

Change Log

No	Changed Details	Date of change
0	[2011年12月27日] 掲載	Feb. 17, 2018, 10:37 a.m.

NVD Vulnerability Information

CVE-2011-3831

Summary	SQL injection vulnerability in incident_attachments.php in Support Incident Tracker (aka SiT!) 3.65 allows remote attackers to execute arbitrary SQL commands via an uploaded file with a crafted file name.
Publication Date	Jan. 29, 2012, 1:04 p.m.
Registration Date	Jan. 28, 2021, 4:39 p.m.
Last Update	Nov. 21, 2024, 10:31 a.m.

Affected software configurations

Configuration1		or higher	or less	more than	less than
cpe:2.3:a:sitracker:support_incident_tracker:3.65:::::::*

Related information, measures and tools

No	URL	タグ
1	http://secunia.com/advisories/45453	Vendor Advisory
2	http://secunia.com/secunia_research/2011-77/	Vendor Advisory
3	http://www.kb.cert.org/vuls/id/576355	US Government Resource
4	http://www.osvdb.org/77001
5	http://www.securityfocus.com/bid/50632	Exploit
6	https://exchange.xforce.ibmcloud.com/vulnerabilities/71235
7	http://secunia.com/advisories/45453	Vendor Advisory
8	https://exchange.xforce.ibmcloud.com/vulnerabilities/71235
9	http://www.securityfocus.com/bid/50632	Exploit
10	http://www.osvdb.org/77001
11	http://www.kb.cert.org/vuls/id/576355	US Government Resource
12	http://secunia.com/secunia_research/2011-77/	Vendor Advisory

Common Vulnerabilities List

No	CWE	Name	URL
1	CWE-89	SQLインジェクション	https://cwe.mitre.org/data/definitions/89.html

CVE-2011-3833

Summary	Unrestricted file upload vulnerability in ftp_upload_file.php in Support Incident Tracker (aka SiT!) 3.65 allows remote authenticated users to execute arbitrary PHP code by uploading a PHP file, then accessing it via a direct request to the file in an unspecified directory.
Publication Date	Jan. 29, 2012, 1:04 p.m.
Registration Date	Jan. 28, 2021, 4:39 p.m.
Last Update	Nov. 21, 2024, 10:31 a.m.

Affected software configurations

Configuration1		or higher	or less	more than	less than
cpe:2.3:a:sitracker:support_incident_tracker:3.65:::::::*

Related information, measures and tools

No	URL	タグ
1	http://packetstormsecurity.org/files/106933/sit_file_upload.rb.txt	Exploit
2	http://secunia.com/advisories/45453	Vendor Advisory
3	http://secunia.com/secunia_research/2011-79/	Vendor Advisory
4	http://www.exploit-db.com/exploits/18108	Exploit
5	http://www.kb.cert.org/vuls/id/576355	US Government Resource
6	http://www.osvdb.org/77003
7	http://www.securityfocus.com/bid/50632	Exploit
8	http://www.securityfocus.com/bid/50896	Exploit
9	https://exchange.xforce.ibmcloud.com/vulnerabilities/71237
10	https://exchange.xforce.ibmcloud.com/vulnerabilities/71651
11	http://packetstormsecurity.org/files/106933/sit_file_upload.rb.txt	Exploit
12	https://exchange.xforce.ibmcloud.com/vulnerabilities/71651
13	https://exchange.xforce.ibmcloud.com/vulnerabilities/71237
14	http://www.securityfocus.com/bid/50896	Exploit
15	http://www.securityfocus.com/bid/50632	Exploit
16	http://www.osvdb.org/77003
17	http://www.kb.cert.org/vuls/id/576355	US Government Resource
18	http://www.exploit-db.com/exploits/18108	Exploit
19	http://secunia.com/secunia_research/2011-79/	Vendor Advisory
20	http://secunia.com/advisories/45453	Vendor Advisory

Common Vulnerabilities List

CVE-2011-5067

Summary	move_uploaded_file.php in Support Incident Tracker (aka SiT!) 3.65 allows remote authenticated users to obtain sensitive information via the file name, which reveals the installation path in an error message.
Publication Date	Jan. 29, 2012, 1:04 p.m.
Registration Date	Jan. 28, 2021, 4:40 p.m.
Last Update	Nov. 21, 2024, 10:33 a.m.

Affected software configurations

Configuration1		or higher	or less	more than	less than
cpe:2.3:a:sitracker:support_incident_tracker:3.65:::::::*

Related information, measures and tools

No	URL	refsource	タグ
1	http://www.kb.cert.org/vuls/id/576355		US Government Resource
2	http://www.kb.cert.org/vuls/id/576355		US Government Resource

Common Vulnerabilities List

No	CWE	Name	URL
1	CWE-200	情報漏えい	https://cwe.mitre.org/data/definitions/200.html

CVE-2011-5068

Summary	Multiple cross-site request forgery (CSRF) vulnerabilities in Support Incident Tracker (aka SiT!) 3.65 allow remote attackers to hijack the authentication of user for requests that delete a user via user_delete.php and other unspecified programs.
Publication Date	Jan. 29, 2012, 1:04 p.m.
Registration Date	Jan. 28, 2021, 4:40 p.m.
Last Update	Nov. 21, 2024, 10:33 a.m.

Affected software configurations

Configuration1		or higher	or less	more than	less than
cpe:2.3:a:sitracker:support_incident_tracker:3.65:::::::*

Related information, measures and tools

No	URL	タグ
1	http://osvdb.org/show/osvdb/77657
2	http://secunia.com/advisories/45437	Vendor Advisory
3	http://www.kb.cert.org/vuls/id/576355	US Government Resource
4	http://www.securityfocus.com/bid/50896
5	https://exchange.xforce.ibmcloud.com/vulnerabilities/71653
6	http://osvdb.org/show/osvdb/77657
7	https://exchange.xforce.ibmcloud.com/vulnerabilities/71653
8	http://www.securityfocus.com/bid/50896
9	http://www.kb.cert.org/vuls/id/576355	US Government Resource
10	http://secunia.com/advisories/45437	Vendor Advisory

Common Vulnerabilities List

No	CWE	Name	URL
1	CWE-352	クロスサイト・リクエスト・フォージェリ（CSRF）	https://cwe.mitre.org/data/definitions/352.html
2	CWE-352	同一生成元ポリシー違反	https://cwe.mitre.org/data/definitions/346.html

CVE-2011-5069

Summary	Unrestricted file upload vulnerability in incident_attachments.php in Support Incident Tracker (aka SiT!) 3.65 allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in unspecified directory, a different program than CVE-2011-3833.
Publication Date	Jan. 29, 2012, 1:04 p.m.
Registration Date	Jan. 28, 2021, 4:40 p.m.
Last Update	Nov. 21, 2024, 10:33 a.m.

Affected software configurations

Configuration1		or higher	or less	more than	less than
cpe:2.3:a:sitracker:support_incident_tracker:3.65:::::::*

Related information, measures and tools

No	URL	タグ
1	http://secunia.com/advisories/45437	Vendor Advisory
2	http://www.kb.cert.org/vuls/id/576355	US Government Resource
3	http://www.osvdb.org/77653
4	http://www.securityfocus.com/bid/50896
5	https://exchange.xforce.ibmcloud.com/vulnerabilities/71651
6	http://secunia.com/advisories/45437	Vendor Advisory
7	https://exchange.xforce.ibmcloud.com/vulnerabilities/71651
8	http://www.securityfocus.com/bid/50896
9	http://www.osvdb.org/77653
10	http://www.kb.cert.org/vuls/id/576355	US Government Resource

Common Vulnerabilities List

CVE-2011-5070

Summary	Multiple cross-site scripting (XSS) vulnerabilities in Support Incident Tracker (aka SiT!) 3.65 allow remote attackers to inject arbitrary web script or HTML via (1) the file name to incident_attachments.php; (2) unspecified vectors in link_add.php, possibly involving origref, linkref, linktype parameters, which are not properly handled in the clean_int function in lib/base.inc.php, or the redirect parameter, which is not properly handled in the html_redirect function in lib/html.inc.php; and (3) unspecified vectors in translate.php.
Publication Date	Jan. 29, 2012, 1:04 p.m.
Registration Date	Jan. 28, 2021, 4:40 p.m.
Last Update	Nov. 21, 2024, 10:33 a.m.

Affected software configurations

Configuration1		or higher	or less	more than	less than
cpe:2.3:a:sitracker:support_incident_tracker:3.65:::::::*

Related information, measures and tools

No	URL	タグ
1	http://secunia.com/advisories/45437	Vendor Advisory
2	http://www.kb.cert.org/vuls/id/576355	US Government Resource
3	http://www.osvdb.org/77654
4	http://www.osvdb.org/77655
5	http://www.osvdb.org/77656
6	http://www.securityfocus.com/bid/50896
7	https://exchange.xforce.ibmcloud.com/vulnerabilities/71652
8	http://secunia.com/advisories/45437	Vendor Advisory
9	https://exchange.xforce.ibmcloud.com/vulnerabilities/71652
10	http://www.securityfocus.com/bid/50896
11	http://www.osvdb.org/77656
12	http://www.osvdb.org/77655
13	http://www.osvdb.org/77654
14	http://www.kb.cert.org/vuls/id/576355	US Government Resource

Common Vulnerabilities List

No	CWE	Name	URL
1	CWE-79	クロスサイト・スクリプティング（XSS）	https://cwe.mitre.org/data/definitions/79.html