EPiServer CMS Cross Site Scripting and Security Bypass Vulnerabilities
BID:51877
Info
EPiServer CMS Cross Site Scripting and Security Bypass Vulnerabilities
| Bugtraq ID: | 51877 |
| Class: | Unknown |
| CVE: |
CVE-2012-1031 CVE-2012-1034 |
| Remote: | Yes |
| Local: | No |
| Published: | Jan 10 2012 12:00AM |
| Updated: | Feb 09 2012 12:00PM |
| Credit: | David Johansson |
| Vulnerable: |
EPiServer EPiServer CMS 6 EPiServer EPiServer CMS 5 |
| Not Vulnerable: |
EPiServer EPiServer CMS 6 R2 |
Discussion
EPiServer CMS Cross Site Scripting and Security Bypass Vulnerabilities
EPiServer CMS is prone to the following vulnerabilities:
1. A security-bypass vulnerability.
2. A cross-site scripting vulnerability.
Successfully exploiting these issues may allow an attacker to bypass certain security restrictions, execute arbitrary script code in the browser of an unsuspecting user, steal cookie-based authentication credentials, and perform certain administrative actions in the vulnerable application.
The following versions are affected:
EPiServer CMS 5
EPiServer CMS 6
EPiServer CMS is prone to the following vulnerabilities:
1. A security-bypass vulnerability.
2. A cross-site scripting vulnerability.
Successfully exploiting these issues may allow an attacker to bypass certain security restrictions, execute arbitrary script code in the browser of an unsuspecting user, steal cookie-based authentication credentials, and perform certain administrative actions in the vulnerable application.
The following versions are affected:
EPiServer CMS 5
EPiServer CMS 6
Exploit / POC
EPiServer CMS Cross Site Scripting and Security Bypass Vulnerabilities
Attackers can use a browser to exploit these issues.
Attackers can use a browser to exploit these issues.
Solution / Fix
EPiServer CMS Cross Site Scripting and Security Bypass Vulnerabilities
Solution:
Updates are available. Please see the references for more information.
Solution:
Updates are available. Please see the references for more information.
References
EPiServer CMS Cross Site Scripting and Security Bypass Vulnerabilities
References:
References:
- EPiServer CMS Homepage (EPiServer)
- General Hotfix CMS-6 R2 (EPiServer)
- Security vulnerability - Elevation of privilege (EPiServer)