Forescout NAC 220.127.116.11 Cross-Site Redirection Vulnerability
Forescout NAC (Network Access Control) device is vulnerable to a cross-site redirection vulnerability on the login page.
- CVE number: CVE-2012-4982
- Impact: Medium
- Vendor homepage: http://www.forescout.com
- Vendor notified: 21/09/2012
- Vendor response: This issue is reportedly fixed in version 7.0.
- Credit: Joseph Sheridan of ReactionIS
Forescout CounterACT NAC 18.104.22.168 other versions may also be affected.
The Forescout NAC device is vulnerable to cross-site redirection and could be used to redirect a targetted victim to a malicious site. The 'a' parameter is vulnerable on the 'login' page. See below for details:
The payload could be delivered by enticing a victim to follow a link in a 'phishing' email.
An attacker may be able to gain credentials for the NAC device or seek to install malware on the victim's machine via a malicious site.
Version 7.0 reportedly fixes this issue.
Reaction Information Security is a leading independent pen test consultancy specialising in delivering the highest quality security testing services including network pen testing and web application security testing. As a CESG CHECK Service Provider we are authorised to carry out penetration testing on classified government networks.