Zimbra 'aspell.php' Cross Site Scripting Vulnerability

Bugtraq ID:	58913
Class:	Input Validation Error
CVE:	CVE-2013-1938
Remote:	Yes
Local:	No
Published:	Apr 05 2013 12:00AM
Updated:	Apr 10 2013 06:48AM
Credit:	Michael Scherer
Vulnerable:	VMWare Zimbra 0
Not Vulnerable:

Zimbra 'aspell.php' Cross Site Scripting Vulnerability

Zimbra is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data.

An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may allow the attacker to steal cookie-based authentication credentials and launch other attacks.

Zimbra 'aspell.php' Cross Site Scripting Vulnerability

To exploit the issue, an attacker must entice an unsuspecting victim to follow a malicious URI.

The following example URI is available:

http://www.example.com/aspell.php?disctionnary=><script>alert('foo');</script>

Zimbra 'aspell.php' Cross Site Scripting Vulnerability

Solution:
Updates are available. Please see the references or vendor advisory for more information.

Zimbra 'aspell.php' Cross Site Scripting Vulnerability

References:

• Zimbra Desktop Homepage (VMware Zimbra)