FreeBSD : rubygem-geminabox -- XSS & CSRF vulnerabilities (2bffdf2f-9d45-11e7-a25c-471bafc3262f)

This script is Copyright (C) 2017 Tenable Network Security, Inc.


Synopsis :

The remote FreeBSD host is missing a security-related update.

Description :

Gem in a box XSS vulenrability - CVE-2017-14506 :

Malicious attacker create GEM file with crafted homepage value
(gem.homepage in .gemspec file) includes XSS payload.

The attacker access geminabox system and uploads the gem file (or uses
CSRF/SSRF attack to do so).

From now on, any user access Geminabox web server, executes the
malicious XSS payload, that will delete any gems on the server, and
won't let users use the geminabox anymore. (make victim's browser
crash or redirect them to other hosts).

See also :

http://www.nessus.org/u?8d7615c8
http://www.nessus.org/u?a92d6469

Solution :

Update the affected package.

Risk factor :

Medium / CVSS Base Score : 6.8
(CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P)

Family: FreeBSD Local Security Checks

Nessus Plugin ID: 103343 ()

Bugtraq ID:

CVE ID: CVE-2017-14506
CVE-2017-14683

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now