Siteminder Solution for webagent's vulnerability CVE-2023-23956
search cancel

Siteminder Solution for webagent's vulnerability CVE-2023-23956

book

Article ID: 272635

calendar_today

Updated On:

Products

SITEMINDER

Issue/Introduction

Priority vulnerability associated with SiteMinder, related to the following

Environment

Release : R12.52 webagents

Cause

Technical details

You can see in the URLs below, they all go to the same path, /siteminderagent/forms/smpwservices.fcc.

The main difference is the parameter where the payload goes, but they are both related to password services.

In such cases, the problem is that the input that is entered on the USERNAME parameter is entered directly into the DOM with the method document.write(), which is inherently susceptible to XSS as it can insert HTML and JavaScript into the DOM. You can see that in the HTTP response for any of the reported URLs in this example.

Resolution

  1. Add the following the Agent Configuration Object (ACO) parameters

    FCCHTMLEncoding = no
    FCCHTMLEncodingChars = %22,%26,%27,%3c,%3e,%5c

  2. Rerun the vulnerability scan and report to Broadcom support to assist further on this vulnerability.

Additional Information