SimpleSAMLphp Multiple Cross Site Scripting Vulnerabilities

Bugtraq ID:	51372
Class:	Input Validation Error
CVE:	CVE-2012-0040 CVE-2012-0908
Remote:	Yes
Local:	No
Published:	Jan 11 2012 12:00AM
Updated:	Mar 19 2015 07:35AM
Credit:	timtai1 and olavmrk
Vulnerable:	SimpleSAMLphp simpleSAMLphp 1.8.1 SimpleSAMLphp simpleSAMLphp 0 Debian Linux 6.0 sparc Debian Linux 6.0 s/390 Debian Linux 6.0 powerpc Debian Linux 6.0 mips Debian Linux 6.0 ia-64 Debian Linux 6.0 ia-32 Debian Linux 6.0 arm Debian Linux 6.0 amd64
Not Vulnerable:	SimpleSAMLphp simpleSAMLphp 1.8.2

SimpleSAMLphp Multiple Cross Site Scripting Vulnerabilities

SimpleSAMLphp is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input.

An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This can allow the attacker to steal cookie-based authentication credentials and launch other attacks.

SimpleSAMLphp 1.8.1 is vulnerable; prior versions may also be affected.

SimpleSAMLphp Multiple Cross Site Scripting Vulnerabilities

Attackers can exploit these issues by enticing an unsuspecting victim into following a malicious URI.

SimpleSAMLphp Multiple Cross Site Scripting Vulnerabilities

Solution:
Updates are available. Please see the references for more information.

SimpleSAMLphp Multiple Cross Site Scripting Vulnerabilities

References:

• SimpleSAMLphp Cross Site Scripting Vulnerability (timtai1)
  
• SimpleSAMLphp Homepage (SimpleSAMLphp)
  
• SimpleSAMLphp Two Cross Site Scripting Vulnerabilities ([email protected])