Splunk 'Referer' Header Cross-Site Scripting Vulnerability Network Vulnerability

Summary

This host is running Splunk and is prone to Cross-Site Scripting vulnerability.

Impact

Successful exploitation will allow attackers to execute arbitrary web script or HTML in a user's browser session in the context of an affected site. Impact Level: Application

Solution

Upgrade to Splunk version 4.1.3 or later, For updates refer to http://www.splunk.com/download

Insight

The flaw is caused by improper validation of user-supplied input passed via the 'Referer' header before being returned to the user within a HTTP 404 error message when using Internet Explorer.

Affected

Splunk version 4.0 through 4.1.2

References

http://secunia.com/advisories/40187
http://www.splunk.com/view/SP-CAAAFHY
http://xforce.iss.net/xforce/xfdb/59517

Updated on 2015-03-25

Severity

Classification

CVE CVE-2010-2429

CVSS	Base Score: 4.3 AV:N/AC:M/Au:N/C:N/I:P/A:N

Related Vulnerabilities

Aker Secure Mail Gateway Cross-Site Scripting Vulnerability
appRain CMF 'uploadify.php' Remote Arbitrary File Upload Vulnerability
APC PowerChute Network Shutdown 'security/applet' Cross Site Scripting Vulnerability
Aardvark Topsites PHP 'index.php' Multiple Cross Site Scripting Vulnerabilities
Apache Tomcat NIO Connector Denial of Service Vulnerability

Take action and discover your vulnerabilities