LMS Druk.PHP Cross Site Scripting Vulnerability
BID:23715
Info
LMS Druk.PHP Cross Site Scripting Vulnerability
| Bugtraq ID: | 23715 |
| Class: | Input Validation Error |
| CVE: |
CVE-2007-2198 |
| Remote: | Yes |
| Local: | No |
| Published: | Apr 30 2007 12:00AM |
| Updated: | May 01 2007 05:09PM |
| Credit: | This issue was disclosed by the vendor. |
| Vulnerable: |
LMS LAN Management System 1.5.5 LMS LAN Management System 1.5.4 LMS LAN Management System 1.5.3 |
| Not Vulnerable: |
LMS LAN Management System 1.6.9 |
Discussion
LMS Druk.PHP Cross Site Scripting Vulnerability
LMS is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data.
Exploiting this issue could allow an attacker to steal cookie-based authentication credentials and to launch other attacks.
This issue affects versions prior to 1.6.9.
LMS is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data.
Exploiting this issue could allow an attacker to steal cookie-based authentication credentials and to launch other attacks.
This issue affects versions prior to 1.6.9.
Exploit / POC
LMS Druk.PHP Cross Site Scripting Vulnerability
An attacker can exploit this issue by enticing an unsuspecting victim to follow a malicious URI.
An attacker can exploit this issue by enticing an unsuspecting victim to follow a malicious URI.
Solution / Fix
LMS Druk.PHP Cross Site Scripting Vulnerability
Solution:
This issue has been addressed in version 1.6.9 and later.
LMS LAN Management System 1.5.3
LMS LAN Management System 1.5.4
LMS LAN Management System 1.5.5
Solution:
This issue has been addressed in version 1.6.9 and later.
LMS LAN Management System 1.5.3
-
LMS lms-1.6.9.tar.gz
http://www.lms.org.pl/download/1.6/lms-1.6.9.tar.gz
LMS LAN Management System 1.5.4
-
LMS lms-1.6.9.tar.gz
http://www.lms.org.pl/download/1.6/lms-1.6.9.tar.gz
LMS LAN Management System 1.5.5
-
LMS lms-1.6.9.tar.gz
http://www.lms.org.pl/download/1.6/lms-1.6.9.tar.gz