CVE-2016-9471
Last modified
CVE-2016-9471 is a vulnerability of currently unknown severity. Revive Adserver before 3.2.5 and 4.0.0 suffers from Special Element Injection. Usernames weren't properly sanitised when creating users on a Revive Adserver instance. EPSS estimates a 1.37% chance of exploitation in the next 30 days.
Description
Revive Adserver before 3.2.5 and 4.0.0 suffers from Special Element Injection. Usernames weren't properly sanitised when creating users on a Revive Adserver instance. Especially, control characters were not filtered, allowing apparently identical usernames to co-exist in the system, due to the fact that such characters are normally ignored when an HTML page is displayed in a browser. The issue could have therefore been exploited for user spoofing, although elevated privileges are required to create users within Revive Adserver.
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Revive-Adserver | Revive Adserver | <= 3.2.4 |
| Revive-Adserver | Revive Adserver | 4.0.0 |
References
- https://github.com/revive-adserver/revive-adserver/commit/05b1ecebPatch, Third Party Advisory
- https://hackerone.com/reports/128181Permissions Required
- https://www.revive-adserver.com/security/revive-sa-2016-002/Patch, Vendor Advisory
- https://github.com/revive-adserver/revive-adserver/commit/05b1ecebPatch, Third Party Advisory
- https://hackerone.com/reports/128181Permissions Required
- https://www.revive-adserver.com/security/revive-sa-2016-002/Patch, Vendor Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2016-9471?
How severe is CVE-2016-9471?
How do I fix CVE-2016-9471?
Are you affected by CVE-2016-9471?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST