Palo Alto Networks Firewall Interface 'editUser.esp' HTML Injection Vulnerability
BID:40113
Info
Palo Alto Networks Firewall Interface 'editUser.esp' HTML Injection Vulnerability
| Bugtraq ID: | 40113 |
| Class: | Input Validation Error |
| CVE: |
CVE-2010-0475 |
| Remote: | Yes |
| Local: | No |
| Published: | May 12 2010 12:00AM |
| Updated: | May 12 2010 12:00AM |
| Credit: | Jeromie Jackson |
| Vulnerable: |
Paloaltonetworks Firewall Interface 0 |
| Not Vulnerable: |
Paloaltonetworks Firewall Interface 3.1.1 Paloaltonetworks Firewall Interface 3.0.9 |
Discussion
Palo Alto Networks Firewall Interface 'editUser.esp' HTML Injection Vulnerability
Palo Alto Networks Firewall Interface is prone to an HTML-injection vulnerability because it fails to sufficiently sanitize user-supplied data.
Attacker-supplied HTML or JavaScript code could run in the context of the affected site, potentially allowing the attacker to steal cookie-based authentication credentials and to control how the site is rendered to the user; other attacks are also possible.
This issue affects unknown versions of Palo Alto Networks Firewall Interface. We will update this BID when more information is available.
Palo Alto Networks Firewall Interface is prone to an HTML-injection vulnerability because it fails to sufficiently sanitize user-supplied data.
Attacker-supplied HTML or JavaScript code could run in the context of the affected site, potentially allowing the attacker to steal cookie-based authentication credentials and to control how the site is rendered to the user; other attacks are also possible.
This issue affects unknown versions of Palo Alto Networks Firewall Interface. We will update this BID when more information is available.
Exploit / POC
Palo Alto Networks Firewall Interface 'editUser.esp' HTML Injection Vulnerability
Attackers can use a browser to exploit this issue.
The following example URI's are available:
Attackers can use a browser to exploit this issue.
The following example URI's are available:
Solution / Fix
Palo Alto Networks Firewall Interface 'editUser.esp' HTML Injection Vulnerability
Solution:
Reports indicate that this issue will be resolved in upcoming versions. Symantec has been unable to verify this.
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of any more recent information, please mail us at: [email protected].
Solution:
Reports indicate that this issue will be resolved in upcoming versions. Symantec has been unable to verify this.
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of any more recent information, please mail us at: [email protected].
References
Palo Alto Networks Firewall Interface 'editUser.esp' HTML Injection Vulnerability
References:
References:
- Vendor Homepage (Palo Alto Networks)
- Vulnerability in Palo Alto Networks Firewall (Jeromie Jackson)
- Palo Alto Network Vulnerability - Cross-Site Scripting (XSS) ([email protected])