RETIRED: BosDev BosNews Multiple HTML Injection Vulnerabilities
BID:26199
Info
RETIRED: BosDev BosNews Multiple HTML Injection Vulnerabilities
| Bugtraq ID: | 26199 |
| Class: | Input Validation Error |
| CVE: |
CVE-2007-5834 |
| Remote: | Yes |
| Local: | No |
| Published: | Oct 24 2007 12:00AM |
| Updated: | Nov 15 2007 12:40AM |
| Credit: | [email protected] is credited with the discovery of these vulnerabilities. |
| Vulnerable: |
BosDev BosNews 0 |
| Not Vulnerable: | |
Discussion
RETIRED: BosDev BosNews Multiple HTML Injection Vulnerabilities
BosDev BosNews is prone to multiple HTML-injection vulnerabilities because it fails to sufficiently sanitize user-supplied input data.
Exploiting these issues may allow an attacker to execute HTML and script code in the context of the affected site, to steal cookie-based authentication credentials, or to control how the site is rendered to the user; other attacks are also possible.
UPDATE (November 13, 2007): This BID is being retired. The vendor refutes these claims, stating that HTML code is stripped with the exception of certain parameters that will accept HTML only if the user has administrator privileges. Please see the references for more information.
BosDev BosNews is prone to multiple HTML-injection vulnerabilities because it fails to sufficiently sanitize user-supplied input data.
Exploiting these issues may allow an attacker to execute HTML and script code in the context of the affected site, to steal cookie-based authentication credentials, or to control how the site is rendered to the user; other attacks are also possible.
UPDATE (November 13, 2007): This BID is being retired. The vendor refutes these claims, stating that HTML code is stripped with the exception of certain parameters that will accept HTML only if the user has administrator privileges. Please see the references for more information.
Exploit / POC
RETIRED: BosDev BosNews Multiple HTML Injection Vulnerabilities
Attackers can exploit these issues via a browser.
Attackers can exploit these issues via a browser.
Solution / Fix
RETIRED: BosDev BosNews Multiple HTML Injection Vulnerabilities
Solution:
Currently we are not aware of any vendor-supplied patches for these issues. If you feel we are in error or if you are aware of more recent information, please mail us at: mailto:[email protected].
Solution:
Currently we are not aware of any vendor-supplied patches for these issues. If you feel we are in error or if you are aware of more recent information, please mail us at: mailto:[email protected].
References
RETIRED: BosDev BosNews Multiple HTML Injection Vulnerabilities
References:
References: