Welcome to the DNN Community Forums, your preferred source of online community support for all things related to DNN.
In order to participate you must be a registered DNNizen

HomeHomeUsing DNN Platf...Using DNN Platf...Performance and...Performance and...Support for External IP Security Scan ResultsSupport for External IP Security Scan Results
Previous
 
Next
New Post
5/10/2016 7:39 AM
 

Hi,

Our company website (www.acuigen.com) is currently using DNN versio08.00.00 (809). We host the site using IIS 8.5.

Recently we had a full external IP scan done using Nessus and it came back with some Low/Medium results for the website. As I don't have much knowledge of web development issues or how to fix them, it would be fantastic if some experts could have a look at these and give some support/solutions. I have access to the SuperUser account and I'm looking to re-mediate these issues ASAP.

1. CGI Generic HTML Injections (quick test)

Test ID: 49067
Severity: 2 / Medium
Description: The remote web server hosts CGI scripts that fail to adequately sanitize request strings with malicious JavaScript. By leveraging this issue, an attacker may be able to cause arbitrary HTML to be executed in a user's browser within the security context of the affected site. The remote web server may be vulnerable to IFRAME injections or cross-site scripting attacks : - IFRAME injections allow 'virtual defacement' that might scare or anger gullible users. Such injections are sometimes implemented for 'phishing' attacks. - XSS are extensively tested by four other scripts. - Some applications (e.g. web forums) authorize a subset of HTML without any ill effect. In this case, ignore this warning. 

2. Nuked-Klan index.php Multiple Module Vulnerabilities
Test ID
: 11447
Severity: 2 / Medium
Description: Nuked-klan 1.3b fails to sanitize user-supplied input to several parameters before using them in the 'Team', 'News', and 'Liens' modules to display dynamic HTML. An attacker may leverage these issues to launch cross-site scripting attacks against the affected host. In addition to this, another flaw may allow an attacker to obtain the physical path of the directory in which the application is installed.

3. phpCMS parser.php file Parameter XSS
Test ID: 15850
Severity: 2 / Medium
Description: The remote host runs phpCMS, a content management system written in PHP. This version is vulnerable to cross-site scripting due to a lack of sanitization of user-supplied data in parser.php script. Successful exploitation of this issue may allow an attacker to execute malicious script code on a vulnerable server.

4. Web Server HTTP Header Internal IP Disclosure (is this one to do with DNN? I can look into the IIS or Firewall settings if need be)
Test ID: 10759
Severity: 1 / Low
Description: This may expose internal IP addresses that are usually hidden or masked behind a Network Address Translation (NAT) Firewall or proxy server. There is a known issue with Microsoft IIS 4.0 doing this in its default configuration. This may also affect other web servers, web applications, web proxies, load balancers and through a variety of misconfigurations related to redirection.

If anyone has any solutions to the 4 numbered problems, then please reply to this thread or PM me directly.

Thanks,

James

 
New Post
5/10/2016 9:31 AM
 
These results mention .php files. They won't be DNN related.

If you have scan results that are *really* to do with a DNN site then we may be able to help you.

Best wishes,
- Richard
Agile Development Consultant, Practitioner, and Trainer
www.dynamisys.co.uk
 
New Post
5/10/2016 10:11 AM
 
Richard Howells wrote:
These results mention .php files. They won't be DNN related.

If you have scan results that are *really* to do with a DNN site then we may be able to help you.

Apologies if some of these issues don't actually relate to DNN. As previously said I'm not really an expert in these *web-development/design-ish* issues, I'm usually focusing on the networking side of things.

To my knowledge and from asking one of our developers, I don't think we even use php.

Issue no. 1 hits me as having something to do with DNN because it mentions HTML and JavaScript being executed within the browser.

 
New Post
5/10/2016 6:11 PM
 
4 is not of relevance,
3 is false identification
2 is not applicable IMO
1 is not applicable, as DNN doesn't use CGI scripts

Cheers from Germany,
Sebastian Leupold (Microsoft MVP)

dnnWerk - The DotNetNuke Experts   German Spoken DotNetNuke User Group

Speed up your DNN Websites with TurboDNN
 
New Post
5/10/2016 7:11 PM
 
Without some context I don't see how you can take the scan results seriously.

For example - It states positively that this web site is running phpCMS. You are able to tell us that there is no php in sight. If it's so far wrong that it positively identifies the wrong product why would we take any of its output seriously?

If you are under management pressure - ie they have paid for this scan and therefore are motivated to believe it - you will have to gather more information. For example it's not very useful to state that the site as a whole suffers from a problem. There can be site wide problems but if you have to attack this you'll need to start off with a specific page; a specific example of the test input; and a far more precise statement of why the result is wrong/bad/broken.

Best wishes,
- Richard
Agile Development Consultant, Practitioner, and Trainer
www.dynamisys.co.uk
 
Previous
 
Next
HomeHomeUsing DNN Platf...Using DNN Platf...Performance and...Performance and...Support for External IP Security Scan ResultsSupport for External IP Security Scan Results


These Forums are dedicated to discussion of DNN Platform and Evoq Solutions.

For the benefit of the community and to protect the integrity of the ecosystem, please observe the following posting guidelines:

  1. No Advertising. This includes promotion of commercial and non-commercial products or services which are not directly related to DNN.
  2. No vendor trolling / poaching. If someone posts about a vendor issue, allow the vendor or other customers to respond. Any post that looks like trolling / poaching will be removed.
  3. Discussion or promotion of DNN Platform product releases under a different brand name are strictly prohibited.
  4. No Flaming or Trolling.
  5. No Profanity, Racism, or Prejudice.
  6. Site Moderators have the final word on approving / removing a thread or post or comment.
  7. English language posting only, please.

Content Layout

Subscribe to DNN Digest

Subscribe to DNN Digest

DNN Digest is our monthly email newsletter. It highlights news and content from around the DNN ecosystem, such as new modules and themes, messages from leadership, blog posts and notable tweets. Keep your finger on the pulse of the ecosystem by subscribing.  


Copyright 2017 by DNN Corp Terms of Use Privacy
What is Liquid Content?
Find Out
What is Liquid Content?
Find Out
What is Liquid Content?
Find Out