Adventia Chat Server Pro main_frame.asp XSS

2005-03-29T23:45:16
ID OSVDB:15156
Type osvdb
Reporter Donnie Werner(morning_wood@exploitlabs.com)
Modified 2005-03-29T23:45:16

Description

Vulnerability Description

Adventia Chat Server Pro contains a flaw that allows remote and static cross site scripting attack. This flaw exists because the application does not validate user-supplied input upon submission to the main_frame.asp script. This could allow a user to insert a script that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

Solution Description

Currently, there are no known upgrades, patches, or workarounds available to correct this issue from the vendor.

Short Description

Adventia Chat Server Pro contains a flaw that allows remote and static cross site scripting attack. This flaw exists because the application does not validate user-supplied input upon submission to the main_frame.asp script. This could allow a user to insert a script that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

Manual Testing Notes

The attacker can insert malicious scripts in the main chat page http://[target]/cgi-bin/chatpro/main_frame.asp and the script will be executed by users that are logged in.

References:

Vendor URL: http://www.adventia.com/ Security Tracker: 1013588 Packet Storm: http://packetstormsecurity.org/0503-advisories/EXPL-A-2005-003.txt Other Advisory URL: http://exploitlabs.com/files/advisories/EXPL-A-2005-003-adventiachat.txt News Article: http://www.unleashedportal.com/Article1436.html Mail List Post: http://archives.neohapsis.com/archives/fulldisclosure/2005-03/0829.html Keyword: EXPL-A-2005-003 ISS X-Force ID: 21317 CVE-2005-0919 Bugtraq ID: 12940