HP System Management Homepage (SMH) 'message.php' Cross Site Scripting Vulnerability

Bugtraq ID:	30846
Class:	Input Validation Error
CVE:
Remote:	Yes
Local:	No
Published:	Aug 26 2008 12:00AM
Updated:	Aug 29 2008 05:34PM
Credit:	Luca Carettoni, Claudio Criscione, and Lavakumar Kuppan
Vulnerable:	HP System Management Homepage 2.1.12 HP System Management Homepage 2.1.11 HP System Management Homepage 2.1.10 HP System Management Homepage 2.1.9 HP System Management Homepage 2.1.8 HP System Management Homepage 2.1.7 HP System Management Homepage 2.1.6 HP System Management Homepage 2.1.5 HP System Management Homepage 2.1.4 HP System Management Homepage 2.1.3 .132 HP System Management Homepage 2.1.3 HP System Management Homepage 2.1.2 HP System Management Homepage 2.1.2 HP System Management Homepage 2.1.1 HP System Management Homepage 2.1 HP System Management Homepage 2.0.2 HP System Management Homepage 2.0.1 HP System Management Homepage 2.0 HP HP-UX B.11.31 HP HP-UX B.11.23 HP HP-UX B.11.11
Not Vulnerable:

HP System Management Homepage (SMH) 'message.php' Cross Site Scripting Vulnerability

HP System Management Homepage (SMH) is prone to a cross-site scripting vulnerability.

Exploiting this vulnerability may allow an attacker to perform cross-site scripting attacks on unsuspecting users in the context of the affected site. As a result, the attacker may be able to steal cookie-based authentication credentials and to launch other attacks.

NOTE: This issue may stem from an incomplete fix for the issues discussed in BIDs 24256 (HP System Management Homepage (SMH) Unspecified Cross Site Scripting Vulnerability) and 25953 (HP System Management Homepage (SMH) for Linux, Windows, and HP-UX Cross Site Scripting Vulnerability), but Symantec has not confirmed this.

HP System Management Homepage (SMH) 'message.php' Cross Site Scripting Vulnerability

To exploit this issue, an attacker must entice an unsuspecting victim into following a malicious URI.

The following proof-of-concept URIs are available:

• /data/vulnerabilities/exploits/30846.html

HP System Management Homepage (SMH) 'message.php' Cross Site Scripting Vulnerability

Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].

HP System Management Homepage (SMH) 'message.php' Cross Site Scripting Vulnerability

References:

• HP System Management Homepage (HP)
  
• Hopeless comments regarding the pointless 'HP System Management Homepage (SMH) ("Luca.carettoni" )