BID:52775

TYPO3 powermail Unspecified Cross Site Scripting Vulnerability

Info

TYPO3 powermail Unspecified Cross Site Scripting Vulnerability

Bugtraq ID:	52775
Class:	Input Validation Error
CVE:
Remote:	Yes
Local:	No
Published:	Mar 28 2012 12:00AM
Updated:	Mar 28 2012 12:00AM
Credit:	David Henninger, Oliver Meyfarth and Markus Bucher
Vulnerable:	Typo3 Powermail 1.6.4 Typo3 Powermail 1.6.3 Typo3 Powermail 1.6.2 Typo3 Powermail 1.6.1 Typo3 Powermail 1.6

Not Vulnerable:	Typo3 Powermail 1.6.5

Discussion

TYPO3 powermail Unspecified Cross Site Scripting Vulnerability

The powermail extension for TYPO3 is prone to an unspecified cross-site scripting vulnerability because it fails to properly sanitize user-supplied input.

An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may let the attacker steal cookie-based authentication credentials and launch other attacks.

Versions prior to powermail 1.6.5 are vulnerable.

Exploit / POC

TYPO3 powermail Unspecified Cross Site Scripting Vulnerability

Attackers can exploit this issue by enticing an unsuspecting user into following a malicious URI.

Solution / Fix

TYPO3 powermail Unspecified Cross Site Scripting Vulnerability

Solution:
Updates are available. Pleases see the references for more information.

References

TYPO3 powermail Unspecified Cross Site Scripting Vulnerability

References:

TYPO3 Homepage (TYPO3)
TYPO3 Security Bulletin TYPO3-EXT-SA-2012-004: Cross-Site Scripting vulnerabilit (TYPO3)