Fortinet FortiOS Redirect Parameter Multiple Vulnerabilities

This script is Copyright (C) 2016-2017 Tenable Network Security, Inc.


Synopsis :

The remote host is affected by multiple vulnerabilities.

Description :

The remote host is running a version of Fortinet FortiOS that is
affected by the following vulnerabilities :

- An open redirect vulnerability exists due to improper
validation of user-supplied input before using it in
redirects. An attacker can exploit this, via a specially
crafted link, to redirect a victim to an arbitrary
malicious website. (VulnDB 136049)

- A cross-site scripting (XSS) vulnerability exists due to
improper validation of user-supplied input to the
parameter used to govern redirects. An attacker can
exploit this, via a specially crafted request, to
execute arbitrary script code in a user's browser
session. (VulnDB 136050)

See also :

http://seclists.org/fulldisclosure/2016/Mar/68

Solution :

Upgrade to Fortinet FortiOS version 5.0.13 / 5.2.3 / 5.4.0 or later.

Risk factor :

Medium / CVSS Base Score : 4.3
(CVSS2#AV:N/AC:M/Au:N/C:N/I:P/A:N)
CVSS Temporal Score : 3.6
(CVSS2#E:F/RL:OF/RC:ND)
Public Exploit Available : true

Family: Firewalls

Nessus Plugin ID: 90314 ()

Bugtraq ID: 84429

CVE ID:

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now