VMware View URL Processing Cross-site Scripting Vulnerability

Bugtraq ID:	39949
Class:	Input Validation Error
CVE:	CVE-2010-1143
Remote:	Yes
Local:	No
Published:	May 05 2010 12:00AM
Updated:	Oct 01 2012 07:10PM
Credit:	Alexey Sintsov from Digital Security Research Group
Vulnerable:	VMWare View 3.1.2 VMWare View 3.1.1 Gentoo Linux
Not Vulnerable:	VMWare View 3.1.3

VMware View URL Processing Cross-site Scripting Vulnerability

VMware View is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data.

An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may allow the attacker to steal cookie-based authentication credentials and to launch other attacks.

This issue affects VMware View versions prior to 3.1.3.

VMware View URL Processing Cross-site Scripting Vulnerability

To exploit this issue, an attacker must entice an unsuspecting victim into following a malicious URI.

The following URI is available:

http://www.example.com/not_a_real_page<SCRIPT>alert(/XSS/.source)</SCRIPT>

VMware View URL Processing Cross-site Scripting Vulnerability

Solution:
Updates are available. Please see the references for more information.

VMware View URL Processing Cross-site Scripting Vulnerability

References:

• [DSECRG-09-058] Vmware View - XSS vulnerability (Digital Security)
  
• VMware Homepage (VMware)
  
• [Security-announce] VMSA-2010-0008 VMware View 3.1.3 addresses an important cros (VMware)