Initial Publication Date: Advisory Status: Advisory Severity: CVSS Base Score:Legacy ID
16 Apr 2015 Closed Medium CVSS v2: 5.8 SA94
The Malware Analysis Appliance (MAA) is vulnerable to cross-site scripting (XSS) and information disclosure vulnerabilities in search.php. An attacker can use these vulnerabilities to attack the client machine (via XSS), and to obtain MAA user names, sample names, and user generated data about the samples.
Information can be obtained by a non-authenticated user using search.php. An attacker could obtain the names of MAA users that have uploaded samples, the sample file names of any files that have been submitted to MAA, and user generated data about the samples that have been uploaded. An attacker cannot modify information or obtain full administrative access.
Thank you to the CERT Coordination Center for coordinating the vulnerability report and the subsequent release of a fix.