AWStats AWstats.PL Multiple Cross-Site Scripting Vulnerabilities
BID:17621
Info
AWStats AWstats.PL Multiple Cross-Site Scripting Vulnerabilities
| Bugtraq ID: | 17621 |
| Class: | Input Validation Error |
| CVE: |
CVE-2006-1945 CVE-2006-3681 |
| Remote: | Yes |
| Local: | No |
| Published: | Apr 19 2006 12:00AM |
| Updated: | Dec 19 2006 07:42PM |
| Credit: | r0t is credited with the discovery of this vulnerability. |
| Vulnerable: |
Ubuntu Ubuntu Linux 5.10 sparc Ubuntu Ubuntu Linux 5.10 powerpc Ubuntu Ubuntu Linux 5.10 i386 Ubuntu Ubuntu Linux 5.10 amd64 Ubuntu Ubuntu Linux 5.0 4 powerpc Ubuntu Ubuntu Linux 5.0 4 i386 Ubuntu Ubuntu Linux 5.0 4 amd64 Ubuntu Ubuntu Linux 6.06 LTS sparc Ubuntu Ubuntu Linux 6.06 LTS powerpc Ubuntu Ubuntu Linux 6.06 LTS i386 Ubuntu Ubuntu Linux 6.06 LTS amd64 Gentoo Linux AWStats AWStats 6.4 AWStats AWStats 6.3 AWStats AWStats 6.2 AWStats AWStats 6.1 AWStats AWStats 6.0 AWStats AWStats 5.9 AWStats AWStats 5.8 AWStats AWStats 5.7 AWStats AWStats 5.6 AWStats AWStats 5.5 AWStats AWStats 5.4 AWStats AWStats 5.3 AWStats AWStats 5.2 AWStats AWStats 5.1 AWStats AWStats 5.0 AWStats AWStats 4.0 AWStats AWStats 6.5.0 build 1.857 |
| Not Vulnerable: | |
Discussion
AWStats AWstats.PL Multiple Cross-Site Scripting Vulnerabilities
AWStats is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input.
An attacker may leverage these issues to have arbitrary script code executed in the browser of an unsuspecting user in the context of the affected site. This may help the attacker steal cookie-based authentication credentials and launch other attacks.
AWStats version 6.5 (build 1.857) and prior are vulnerable to these issues.
AWStats is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input.
An attacker may leverage these issues to have arbitrary script code executed in the browser of an unsuspecting user in the context of the affected site. This may help the attacker steal cookie-based authentication credentials and launch other attacks.
AWStats version 6.5 (build 1.857) and prior are vulnerable to these issues.
Exploit / POC
AWStats AWstats.PL Multiple Cross-Site Scripting Vulnerabilities
This issue can be exploited through a web client.
The following proofs-of-concept URI are available:
http://www.example.com/awstats.pl?refererpagesfilter=[XSS]&refererpagesfilterex=&output=refererpages&config=unsecured-systems.com&year=2006&month=all
http://www.example.com/awstats.pl?refererpagesfilter=&refererpagesfilterex=[XSS]&output=refererpages&config=unsecured-systems.com&year=2006&month=all
http://www.example.com/awstats.pl?urlfilter=&urlfilterex=[XSS]&output=urlentry&config=unsecured-systems.com&year=2006&month=all
http://www.example.com/awstats.pl?urlfilter=[XSS]&urlfilterex=&output=urlentry&config=unsecured-systems.com&year=2006&month=all
http://www.example.com/awstats.pl?hostfilter=[XSS]&hostfilterex=&output=allhosts&config=unsecured-systems.com&year=2006&month=all
http://www.example.com/awstats.pl?hostfilter=&hostfilterex=[XSS]&output=allhosts&config=unsecured-systems.com&year=2006&month=all
This issue can be exploited through a web client.
The following proofs-of-concept URI are available:
http://www.example.com/awstats.pl?refererpagesfilter=[XSS]&refererpagesfilterex=&output=refererpages&config=unsecured-systems.com&year=2006&month=all
http://www.example.com/awstats.pl?refererpagesfilter=&refererpagesfilterex=[XSS]&output=refererpages&config=unsecured-systems.com&year=2006&month=all
http://www.example.com/awstats.pl?urlfilter=&urlfilterex=[XSS]&output=urlentry&config=unsecured-systems.com&year=2006&month=all
http://www.example.com/awstats.pl?urlfilter=[XSS]&urlfilterex=&output=urlentry&config=unsecured-systems.com&year=2006&month=all
http://www.example.com/awstats.pl?hostfilter=[XSS]&hostfilterex=&output=allhosts&config=unsecured-systems.com&year=2006&month=all
http://www.example.com/awstats.pl?hostfilter=&hostfilterex=[XSS]&output=allhosts&config=unsecured-systems.com&year=2006&month=all
Solution / Fix
AWStats AWstats.PL Multiple Cross-Site Scripting Vulnerabilities
Solution:
Currently we are not aware of any official vendor-supplied patches for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected]:[email protected].
Please see the referenced advisories for more information.
AWStats AWStats 6.3
AWStats AWStats 6.4
Solution:
Currently we are not aware of any official vendor-supplied patches for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected]:[email protected].
Please see the referenced advisories for more information.
AWStats AWStats 6.3
-
Ubuntu awstats_6.3-1ubuntu0.4_all.deb
Ubuntu 5.04:
http://security.ubuntu.com/ubuntu/pool/main/a/awstats/awstats_6.3-1ubu ntu0.4_all.deb
AWStats AWStats 6.4
-
Ubuntu awstats_6.4-1ubuntu1.3_all.deb
Ubuntu 5.10:
http://security.ubuntu.com/ubuntu/pool/main/a/awstats/awstats_6.4-1ubu ntu1.3_all.deb
References
AWStats AWstats.PL Multiple Cross-Site Scripting Vulnerabilities
References:
References:
- AWStats 6.5 vuln. (r0t)
- AWStats Homepage (AWStats)
- AWStats 6.5.x multiple vuln (r0t)