The following security advisory is sent to the securiteam mailing list, and can
be found at the SecuriTeam web site: http://www.securiteam.com
- - promotion
The SecuriTeam alerts list - Free, Accurate, Independent.
Get your security news from a reliable source.
http://www.securiteam.com/mailinglist.html
- - - - - - - - -
LiteSpeed Cross Site Scripting
------------------------------------------------------------------------
SUMMARY
<http://www.litespeedtech.com> LiteSpeed web server is "an Apache
interchangeable, full-featured high performance, secure HTTP server
specifically engineered from the ground up with security and scalability
in mind". A cross site scripting vulnerability in LiteSpeed allows
attackers to cause the program to insert arbitrary HTML and/or JavaScript
into responses it sends back to the user.
DETAILS
Vulnerable Systems:
* LiteSpeed version 2.1.5
When configuring the server the "confMgr.php" script doesn't properly
validate user-supplied input in the 'm' parameter, this allows attackers
to cause a cross site scripting attack.
Example:
http://[target]:7080/admin/config/confMgr.php?m=al_adminListener%3Cscript%3Ealert(document.cookie)%3C/script%3E
ADDITIONAL INFORMATION
The information has been provided by <mailto:gs_lab@yahoo.com> Gama Sec.
========================================
This bulletin is sent to members of the SecuriTeam mailing list.
To unsubscribe from the list, send mail with an empty subject line and body to:
list-unsubscribe@securiteam.com
In order to subscribe to the mailing list, simply forward this email to:
list-subscribe@securiteam.com
====================
====================
DISCLAIMER:
The information in this bulletin is provided "AS IS" without warranty of any
kind.
In no event shall we be liable for any damages whatsoever including direct,
indirect, incidental, consequential, loss of business profits or special
damages.
