XMB MemCP.PHP HTML Injection Vulnerability

Bugtraq ID:	22163
Class:	Input Validation Error
CVE:	CVE-2007-0519
Remote:	Yes
Local:	No
Published:	Jan 22 2007 12:00AM
Updated:	Sep 10 2008 08:50PM
Credit:	The Aria-Security Team is credited with the discovery of this vulnerability.
Vulnerable:	XMB Forum 1.9.8 SP2 XMB Forum 1.9.8 XMB Forum 1.9.6 Final XMB Forum 1.9.6 XMB Forum 1.9.5 Final XMB Forum 1.9.3 XMB Forum 1.9.2 XMB Forum 1.9.1 XMB Forum 1.9 beta XMB Forum 1.9 XMB Forum 1.8 SP3 XMB Forum 1.8 SP2 XMB Forum 1.8 SP1 XMB Forum 1.8
Not Vulnerable:	XMB Forum 1.9.10

XMB MemCP.PHP HTML Injection Vulnerability

XMB is prone to an HTML-injection vulnerability because it fails to properly sanitize user-supplied input before using it in dynamically generated content.

Attacker-supplied HTML and script code would execute in the context of the affected website, potentially allowing an attacker to steal cookie-based authentication credentials or to control how the site is rendered to the user; other attacks are also possible.

Note that an attacker must have a valid user account to exploit this vulnerability.

XMB MemCP.PHP HTML Injection Vulnerability

Attackers can exploit this issue via a web client.

XMB MemCP.PHP HTML Injection Vulnerability

Solution:
A vendor update is available. Contact the vendor for more information.

XMB MemCP.PHP HTML Injection Vulnerability

References:

• Summary of Official Vendor Statements (XMB)
  
• XMB Forum Home Page (The XMB Group)
  
• XMB 'U2U Instant Messenger' Cross-Site Scripting ([email protected])