CVE-2016-4028
Last modified
CVE-2016-4028 is a vulnerability of currently unknown severity. An issue was discovered in Open-Xchange OX Guard before 2.4.0-rev8. OX Guard uses an authentication token to identify and transfer guest users' credentials. EPSS estimates a 0.71% chance of exploitation in the next 30 days.
Description
An issue was discovered in Open-Xchange OX Guard before 2.4.0-rev8. OX Guard uses an authentication token to identify and transfer guest users' credentials. The OX Guard API acts as a padding oracle by responding with different error codes depending on whether the provided token matches the encryption padding. In combination with AES-CBC, this allows attackers to guess the correct padding. Attackers may run brute-forcing attacks on the content of the guest authentication token and discover user credentials. For a practical attack vector, the guest users needs to have logged in, the content of the guest user's "OxReaderID" cookie and the value of the "auth" parameter needs to be known to the attacker.
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions | Update |
|---|---|---|---|
| Open-Xchange | Ox Guard | <= 2.4.0 | Rev7 |
References
- http://www.securitytracker.com/id/1036154Third Party Advisory, VDB Entry
- http://www.securitytracker.com/id/1036154Third Party Advisory, VDB Entry
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2016-4028?
How severe is CVE-2016-4028?
How do I fix CVE-2016-4028?
Are you affected by CVE-2016-4028?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST