Security Bulletin: Multiple vulnerabilities affect IBM Security SiteProtector System (CVE-2015-0160, CVE-2015-0161, CVE-2015-0168, CVE-2015-0169, CVE-2015-0170, CVE-2015-0171)

Summary

There are multiple vulnerabilities identified in IBM Security SiteProtector System.

Vulnerability Details

CVEID: CVE-2015-0160 **
DESCRIPTION:** IBM SiteProtector could allow an authenticated user to execute commands on the operating system with SYSTEM privileges.

CVSS Base Score: 9
CVSS Temporal Score: See https://exchange.xforce.ibmcloud.com/vulnerabilities/100862 for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (AV:N/AC:L/Au:S/C:C/I:C/A:C)

CVEID: CVE-2015-0161 **
DESCRIPTION:** IBM SiteProtector is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements, which could allow the attacker to view, add, modify or delete information in the back-end database.

CVSS Base Score: 6.5
CVSS Temporal Score: See https://exchange.xforce.ibmcloud.com/vulnerabilities/100863 for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (AV:N/AC:L/Au:S/C:P/I:P/A:P)

CVEID: CVE-2015-0168 **
DESCRIPTION:** IBM SiteProtector is vulnerable to cross-site scripting, caused by improper validation of user-supplied input. A remote attacker could exploit this vulnerability using a specially-crafted URL to execute script in a victim’s Web browser within the security context of the hosting Web site, once the URL is clicked. An attacker could use this vulnerability to steal the victim’s cookie-based authentication credentials.

CVSS Base Score: 3.5
CVSS Temporal Score: See https://exchange.xforce.ibmcloud.com/vulnerabilities/100893 for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (AV:N/AC:M/Au:S/C:N/I:P/A:N)

CVEID: CVE-2015-0169 **
DESCRIPTION:** IBM SiteProtector could allow an authenticated user to inject arguments within the program which could affect the integrity of the server.

CVSS Base Score: 4
CVSS Temporal Score: See https://exchange.xforce.ibmcloud.com/vulnerabilities/100896 for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (AV:N/AC:L/Au:S/C:N/I:P/A:N)

CVEID: CVE-2015-0170 **
DESCRIPTION:** IBM SiteProtector stores some cacheable information locally which could be available for a an attacker to gain some privileged information.

CVSS Base Score: 2.1
CVSS Temporal Score: See https://exchange.xforce.ibmcloud.com/vulnerabilities/100897 for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (AV:L/AC:L/Au:N/C:P/I:N/A:N)

CVEID: CVE-2015-0171 **
DESCRIPTION:** IBM SiteProtector could allow a remote attacker to traverse directories on the system. An attacker could write files on the server with privileges of the SiteProtector installation, which could be administrator.

CVSS Base Score: 4.0
CVSS Temporal Score: See https://exchange.xforce.ibmcloud.com/vulnerabilities/100911 for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (AV:N/AC:L/Au:S/C:N/I:P/A:N)

Affected Products and Versions

IBM Security SiteProtector System 3.0, 3.1.0 and 3.1.1

Remediation/Fixes

Apply the appropriate eXPress Updates (XPUs) as identified in the SiteProtector Console Agent view:

For SiteProtector 3.0:

SiteProtector Core Component: ServicePack3_0_0_7.xpu
Event Collector Component: RSEvntCol_WINNT_ST_3_0_0_6.xpu
Agent Manager Component: AgentManager_WINNT_XXX_ST_3_0_0_37.xpu

For SiteProtector 3.1.0:

SiteProtector Core Component: ServicePack3_1_0_4.xpu
Event Collector Component: RSEvntCol_WINNT_ST_3_1_0_4.xpu
Agent Manager Component: AgentManager_WINNT_XXX_ST_3_1_0_19.xpu

For SiteProtector 3.1.1:

SiteProtector Core Component: ServicePack3_1_1_2.xpu
Event Collector Component: RSEvntCol_WINNT_ST_3_1_1_2.xpu
Agent Manager Component: AgentManager_WINNT_XXX_ST_3_1_1_7.xpu

Workarounds and Mitigations

None