CVE-2012-1777 : SQL injection vulnerability in my.activation.php3 in F5 FirePass 6.0.0 through 6

SQL injection vulnerability in my.activation.php3 in F5 FirePass 6.0.0 through 6.1.0 and 7.0.0 allows remote attackers to execute arbitrary SQL commands via the state parameter.

Published 2012-04-05 14:55:05

Updated 2018-01-06 02:29:38

Source MITRE

View at NVD, CVE.org

Vulnerability category: Sql Injection

Products affected by CVE-2012-1777

F5 » Firepass » Version: 6.0
cpe:2.3:h:f5:firepass:6.0:*:*:*:*:*:*:*
Matching versions
F5 » Firepass » Version: 7.0.0
cpe:2.3:h:f5:firepass:7.0.0:*:*:*:*:*:*:*
Matching versions
F5 » Firepass » Version: 6.1.0
cpe:2.3:h:f5:firepass:6.1.0:*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2012-1777

EPSS FAQ

0.98%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 75 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2012-1777

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
7.5	HIGH	AV:N/AC:L/Au:N/C:P/I:P/A:P	10.0	6.4	NIST
Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: Partial Integrity Impact: Partial Availability Impact: Partial

CWE ids for CVE-2012-1777

CWE-89 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

The product constructs all or part of an SQL command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended SQL command when it is sent to a downstream component. Without sufficient removal or quoting of SQL syntax in user-controllable inputs, the generated SQL query can cause those inputs to be interpreted as SQL instead of ordinary user data.

Assigned by: nvd@nist.gov (Primary)

References for CVE-2012-1777

https://exchange.xforce.ibmcloud.com/vulnerabilities/74198

FirePass unspecified SQL injection undefined Vulnerability Report
http://www.securitytracker.com/id?1026834

F5 FirePass Input Validation Flaw in 'my.activation.php3' Lets Remote Users Inject SQL Commands - SecurityTracker
http://seclists.org/fulldisclosure/2012/Mar/324

Full Disclosure: SEC Consult SA-20120328-0 :: F5 FirePass SSL VPN unauthenticated remote root through SQL injection - CVE-2012-1777
http://support.f5.com/kb/en-us/solutions/public/13000/400/sol13463.html

Article: K13463 - FirePass SQL injection vulnerability CVE-2012-1777
Vendor Advisory
http://packetstormsecurity.org/files/111276/F5-FirePass-SSL-VPN-6.x-7.x-SQL-Injection.html

F5 FirePass SSL VPN 6.x / 7.x SQL Injection ≈ Packet Storm
https://exchange.xforce.ibmcloud.com/vulnerabilities/74450

Firepass state parameter SQL injection CVE-2012-1777 Vulnerability Report
https://www.sec-consult.com/files/20120328-0_F5_FirePass_SSL_VPN_unauthenticated_remote_root_v1.0.txt

Page not found | SEC Consult
Exploit

CVEs referencing this url

Jump to

Vulnerability Details : CVE-2012-1777

Products affected by CVE-2012-1777

Exploit prediction scoring system (EPSS) score for CVE-2012-1777

CVSS scores for CVE-2012-1777

CWE ids for CVE-2012-1777

References for CVE-2012-1777