CometChat Remote Code Execution and Cross-Site Scripting Vulnerabilities
BID:57979
Info
CometChat Remote Code Execution and Cross-Site Scripting Vulnerabilities
| Bugtraq ID: | 57979 |
| Class: | Input Validation Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Feb 15 2013 12:00AM |
| Updated: | Feb 25 2013 12:53PM |
| Credit: | B127Y |
| Vulnerable: | |
| Not Vulnerable: | |
Discussion
CometChat Remote Code Execution and Cross-Site Scripting Vulnerabilities
CometChat is prone to a cross-site scripting vulnerability and a remote code-execution vulnerability because the application fails to sufficiently sanitize user-supplied data.
An attacker may leverage the cross-site scripting issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may allow the attacker to steal cookie-based authentication credentials and launch other attacks.
An attacker can exploit the remote code-execution issue to execute arbitrary code in the context of the application. Failed attacks may cause denial-of-service conditions.
CometChat is prone to a cross-site scripting vulnerability and a remote code-execution vulnerability because the application fails to sufficiently sanitize user-supplied data.
An attacker may leverage the cross-site scripting issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may allow the attacker to steal cookie-based authentication credentials and launch other attacks.
An attacker can exploit the remote code-execution issue to execute arbitrary code in the context of the application. Failed attacks may cause denial-of-service conditions.
Exploit / POC
CometChat Remote Code Execution and Cross-Site Scripting Vulnerabilities
To exploit a cross-site scripting issue, an attacker must entice an unsuspecting user to follow a malicious URI.
The following exploits are available:
To exploit a cross-site scripting issue, an attacker must entice an unsuspecting user to follow a malicious URI.
The following exploits are available:
Solution / Fix
CometChat Remote Code Execution and Cross-Site Scripting Vulnerabilities
Solution:
Updates are available. Please see the references or vendor advisory for more information.
Solution:
Updates are available. Please see the references or vendor advisory for more information.
References
CometChat Remote Code Execution and Cross-Site Scripting Vulnerabilities
References:
References: