DiscusWare Discus跨站脚本攻击漏洞

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1109586 漏洞类型 跨站脚本
发布时间 2006-01-02 更新时间 2007-07-12
CVE编号 CVE-2006-0073 CNNVD-ID CNNVD-200601-006
漏洞平台 CGI CVSS评分 4.3
|漏洞来源
https://www.exploit-db.com/exploits/27021
https://www.securityfocus.com/bid/16119
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200601-006
|漏洞详情
DiscusWareDiscusFreeware存在跨站脚本攻击(XSS)漏洞,可让远程攻击者通过URL中未指定的矢量(未从产生的错误消息中适当净化)注入任意Web脚本或HTML。注意:此信息来源未知;只是从第三方信息来源获取的详细信息。
|漏洞EXP
source: http://www.securityfocus.com/bid/16119/info

DiscusWare Discus is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input.

An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may help the attacker steal cookie-based authentication credentials and launch other attacks.

Discus Professional 3.10 and Discus Freeware 3.10 are vulnerable; other versions may also be affected. 

http://www.example.com/cgi-bin/discus/board-post.cgi?HTTP_REFERER=%3Cscript%3Ealert%281%29%3C%2Fscript%3E&preview=1&message=&username=&passwd=&active_links=1&active_links_a=1
|受影响的产品
DiscusWare Discus Professional 3.10.4 DiscusWare Discus Freeware 3.10.5
|参考资料

来源:BID
名称:16119
链接:http://www.securityfocus.com/bid/16119
来源:OSVDB
名称:22153
链接:http://www.osvdb.org/22153
来源:SECUNIA
名称:18283
链接:http://secunia.com/advisories/18283