Kadu SMS and User Status Message Multiple HTML Injection Vulnerabilities

Bugtraq ID:	52199
Class:	Input Validation Error
CVE:	CVE-2012-1092
Remote:	Yes
Local:	No
Published:	Feb 28 2012 12:00AM
Updated:	Mar 01 2012 12:10AM
Credit:	Mateusz Goik
Vulnerable:	Kadu Kadu 0.11 Kadu Kadu 0.9.0
Not Vulnerable:	Kadu Kadu 0.11.1

Kadu SMS and User Status Message Multiple HTML Injection Vulnerabilities

Kadu is prone to multiple HTML-injection vulnerabilities because the application fails to properly sanitize user-supplied input.

Successful exploits will result in the execution of arbitrary attacker-supplied HTML and script code in the context of the affected application, potentially allowing the attacker to steal cookie-based authentication credentials or control how the page is rendered to the user. Other attacks are also possible.

Kadu versions 0.9.0 to 0.11.0 are vulnerable.

Kadu SMS and User Status Message Multiple HTML Injection Vulnerabilities

Attackers can use readily available tools to exploit these issues.

Kadu SMS and User Status Message Multiple HTML Injection Vulnerabilities

Solution:
Updates are available. Please see the references for more information.

Kadu SMS and User Status Message Multiple HTML Injection Vulnerabilities

References:

• Bug 749036 - VUL-0: kadu: allows to inject js code into hisotry (Bugzilla)
  
• history-sql-storage.cpp Diff (Rafal Malinowski)
  
• Kadu 0.11.1 has been released (28.02.2012) (Kadu)
  
• Kadu Homepage (Kadu)