UseModWiki Input Validation Hole Permits Cross-Site Scripting Attacks
|
|
SecurityTracker Alert ID: 1012493
|
|
SecurityTracker URL: http://securitytracker.com/id?1012493
|
|
CVE Reference: GENERIC-MAP-NOMATCH
(Links to External Site)
|
Date: Dec 14 2004
|
Impact: Disclosure of authentication information, Disclosure of user information, Execution of arbitrary code via network, Modification of user information
|
Exploit Included: Yes
Vendor Confirmed: Yes
|
Advisory: STG Security
|
Version(s): 1.0
|
Description: STG Security's SSR Team reported an input validation vulnerability in UseModWiki. A remote user can conduct cross-site scripting attacks.
It is reported that the software does not properly validate user-supplied input. A remote user can create a specially crafted URL
that, when loaded by a target user, will cause arbitrary scripting code to be executed by the target user's browser. The code will
originate from the site running the UseModWiki software and will run in the security context of that site. As a result, the code
will be able to access the target user's cookies (including authentication cookies), if any, associated with the site, access data
recently submitted by the target user via web form to the site, or take actions on the site acting as the target user.
A demonstration
exploit URL is provided:
http://[target]/cgi-bin/wiki.pl?<script>alert('XSSvulnerabilityexists')</script>
The vendor was notified
on October 1, 2004.
Jeremy Bae at STG Security is credited with discovering this flaw.
|
Impact: A remote user can access the target user's cookies (including authentication cookies), if any, associated with the site running the
UseModWiki software, access data recently submitted by the target user via web form to the site, or take actions on the site acting
as the target user.
|
Solution: No solution was available at the time of this entry.
|
Vendor URL: www.usemod.com/cgi-bin/wiki.pl?UseModWiki (Links to External Site)
|
Cause: Input validation error
|
Underlying OS: Linux (Any), UNIX (Any), Windows (Any)
|
Reported By: "SSR Team" <advisory@stgsecurity.com>
|
Message History:
None.
|
Source Message Contents
|
Date: Tue, 14 Dec 2004 11:46:25 +0900
From: "SSR Team" <advisory@stgsecurity.com>
Subject: STG Security Advisory: [SSA-20041209-13] UseModWiki XSS vulnerability
|
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
STG Security Advisory: [SSA-20041209-13] UseModWiki XSS vulnerability
Revision 1.0
Date Published: 2004-12-09 (KST)
Last Update: 2004-12-09
Disclosed by SSR Team (advisory@stgsecurity.com)
Summary
========
UseModWiki is one of famous wiki web applications. It has a cross-site
scripting vulnerability.
Vulnerability Class
===================
Implementation Error: Input validation flaw
Details
=======
Due to an input validation flaw, the UseModWiki is vulnerable to cross-site
scripting attacks.
http://[victim]/cgi-bin/wiki.pl?<script>alert('XSSvulnerabilityexists')</scr
ipt>
Impact
======
Medium: Malicious attackers can inject and execute an arbitrary script code
in a user's browser session in context of an affected site.
Workaround
==========
There is no known workaround.
Affected Products
================
UseModWiki 1.0
Vendor Status: NOT FIXED
=======================
2004-10-01 Vulnerability found.
2004-10-01 UseModWiki developer notified.
2004-10-02 UseModWiki developer confirmed.
2004-12-09 Official release.
Credits
======
Jeremy Bae at STG Security
-----BEGIN PGP SIGNATURE-----
Version: PGP 8.0
iQA/AwUBQb5Toj9dVHd/hpsuEQLf5ACeKnzLlBUdPNkhnqxOadbhhEAWHiwAoLVx
/rKZpYxRSWHk+Iqhl9KSU3T5
=OeQ+
-----END PGP SIGNATURE-----
|
|
