Xss In 12planet Chat Server 2.9

Full Version: Xss In 12planet Chat Server 2.9

GovernmentSecurity.org > The Archives > Exploit Articles

qcred11

Jul 5 2004, 05:41 PM

QUOTE

Application: 12Planet Chat Server
http://www.12planet.com

Version: 2.9

Bug: cross site scripting

Date: 05-Jul-2004

Author: Donato Ferrante
e-mail: fdonato_at_autistici.org
web: www.autistici.org/fdonato
xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx

1. Description
2. The bug
3. The code
4. The fix
xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
----------------
1. Description:
----------------

Vendor's Description:

"The #1 Professional Chat Server Software, bringing instant
communication into web sites, intranet and extranet portals:
setup your community chat rooms, organize celebrity chat events,
collaborative work sessions or online meetings."

xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx

------------
2. The bug:
------------

The input strings, into some field, are not filtered by the server so
they will appear in the returned page.

xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx

-------------
3. The code:
-------------

To test the vulnerability:

http://[host]:8080/servlet/one2planet.infolet.InfoServlet?
page=<script>alert("hy")</script>

( all on the same line )

xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
------------
4. The fix:
------------
No fix.
The vendor has not answered to my signalations.

xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx

Source: http://seclists.org/lists/bugtraq/2004/Jul/0040.html

This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please click here.