Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Vuln-Dev
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Cross Site Scripting (XSS) in Owl <=0.95, CVE-2008-3100

from [Fabian Fingerle] Network Security [Permanent Link]
Subject: Cross Site Scripting (XSS) in Owl <=0.95, CVE-2008-3100
Date: Mon, 28 Jul 2008 23:15:40 +0200 
Cross Site Scripting (XSS) in Owl <=0.95, CVE-2008-3100

References:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3100
http://owl.sourceforge.net/
http://www.datensalat.eu/~fabian/cve/CVE-2008-3100-Owl.html


Description:
Owl is a multi user document repository (knowledgebase) system for
publishing files/documents onto the web. The application is vulnerable
to simple Cross Site Scripting, which can be used for several isues

Example:
Assuming Owl is installed on http://localhost/Owl/, one can inject
JavaScript with:
http://localhost/Owl/register.php?myaction=getpasswd&username=";><script>alert(1);</script>

Workaround/Fix:
Replace your owl.lib.php with the version from
http://owl.cvs.sourceforge.net/*checkout*/owl/owl-0.90/lib/owl.lib.php

Disclosure Timeline:
2008-07-27 Vendor contacted
2008-07-28 Vendor: fixed issue in cvs / no need for new stable release
2008-07-28 Advisory published

CVE Information:
The Common Vulnerabilities and Exposures (CVE) project has assigned the
name CVE-2008-3100 to this issue. This is a candidate for inclusion in
the CVE list (http://cve.mitre.org/), which standardizes names for
security problems. 

Credits and copyright:
This vulnerability was discovered by Fabian Fingerle (published with
help from Hanno Boeck (http://www.hboeck.de)). It's licensed under the
creative commons attribution license 3.0.

Fabian Fingerle, 2008-07-28, http://www.fabian-fingerle.de

-- 
_GPG_ 3D17 CAC8 1955 1908 65ED  5C51 FDA3 6A09 AB41 AB85
_chaos events near stuttgart_ www.datensalat.eu

Attachment: signature.asc
Description: PGP signature

[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
  • Cross Site Scripting (XSS) in Owl <=0.95, CVE-2008-3100, Fabian Fingerle <=
Previous by Date:  ViArt <= 3.5 SQL Injection, GulfTech Security Research
Next by Date:  [Full-disclosure] [USN-630-1] ffmpeg vulnerability, Kees Cook
Previous by Thread:  ViArt <= 3.5 SQL Injection, GulfTech Security Research
Next by Thread:  [Full-disclosure] [USN-630-1] ffmpeg vulnerability, Kees Cook
Indexes:  [Date] [Thread] [Top] [All Lists]