Vulnerability CVE-2014-3429
Published: 2014-08-07

Description:
IPython Notebook 0.12 through 1.x before 1.2 does not validate the origin of websocket requests, which allows remote attackers to execute arbitrary code by leveraging knowledge of the kernel id and a crafted page.

Type:

CWE-94

 (Improper Control of Generation of Code ('Code Injection'))

CVSS2 => (AV:N/AC:M/Au:N/C:P/I:P/A:P)

CVSS Base Score
Impact Subscore
Exploitability Subscore
6.8/10
6.4/10
8.6/10
Exploit range
Attack complexity
Authentication
Remote
Medium
No required
Confidentiality impact
Integrity impact
Availability impact
Partial
Partial
Partial
Affected software
Opensuse -> Opensuse 
Novell -> Opensuse 
Mageia -> Mageia 
Ipython -> Ipython notebook 

 References:
http://advisories.mageia.org/MGASA-2014-0320.html
http://lambdaops.com/cross-origin-websocket-hijacking-of-ipython
http://lists.opensuse.org/opensuse-updates/2014-08/msg00039.html
http://permalink.gmane.org/gmane.comp.python.ipython.devel/13198
http://seclists.org/oss-sec/2014/q3/152
http://www.mandriva.com/security/advisories?name=MDVSA-2015:160
https://bugzilla.redhat.com/show_bug.cgi?id=1119890
https://exchange.xforce.ibmcloud.com/vulnerabilities/94497
https://github.com/ipython/ipython/pull/4845
Copyright 2024, cxsecurity.com

 

Back to Top