Manx HTTP Response Splitting and Cross Site Scripting Vulnerabilities
BID:50862
Info
Manx HTTP Response Splitting and Cross Site Scripting Vulnerabilities
| Bugtraq ID: | 50862 |
| Class: | Input Validation Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Nov 30 2011 12:00AM |
| Updated: | Nov 30 2011 12:00AM |
| Credit: | Gjoko Krstic, Zero Science Lab |
| Vulnerable: |
Paul Jova Manx 1.0.1 |
| Not Vulnerable: | |
Discussion
Manx HTTP Response Splitting and Cross Site Scripting Vulnerabilities
Manx is prone to multiple HTTP-response-splitting vulnerabilities and a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input.
An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user, steal cookie-based authentication credentials, and influence how Web content is served, cached, or interpreted. This could aid in various attacks that try to entice client users into a false sense of trust.
Manx 1.0.1 is vulnerable; other versions may also be affected.
Manx is prone to multiple HTTP-response-splitting vulnerabilities and a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input.
An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user, steal cookie-based authentication credentials, and influence how Web content is served, cached, or interpreted. This could aid in various attacks that try to entice client users into a false sense of trust.
Manx 1.0.1 is vulnerable; other versions may also be affected.
Exploit / POC
Manx HTTP Response Splitting and Cross Site Scripting Vulnerabilities
To exploit these issues, an attacker must entice an unsuspecting victim into following a malicious URI.
To exploit these issues, an attacker must entice an unsuspecting victim into following a malicious URI.
Solution / Fix
Manx HTTP Response Splitting and Cross Site Scripting Vulnerabilities
Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
References
Manx HTTP Response Splitting and Cross Site Scripting Vulnerabilities
References:
References:
- Manx cms.xml Homepage (Paul Jova)
- Manx cms.xml 1.0.1 Multiple HTTP Response Splitting Vulnerabilities (Paul Jova)