vBulletin /admincp/admincalendar.php XSS

2005-09-17T13:14:34
ID OSVDB:19547
Type osvdb
Reporter Thomas Waldegger(bugtraq@morph3us.org)
Modified 2005-09-17T13:14:34

Description

Vulnerability Description

vBulletin contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate user supplied input upon submission to the /admincp/admincalendar.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

Solution Description

Currently, there are no known upgrades, patches, or workarounds available to correct this issue.

Short Description

vBulletin contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate user supplied input upon submission to the /admincp/admincalendar.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

References:

Vendor URL: http://vbulletin.com/ Vendor Specific News/Changelog Entry: http://www.vbulletin.com/forum/showthread.php?p=961409 Secunia Advisory ID:16873 Related OSVDB ID: 19555 Related OSVDB ID: 19538 Related OSVDB ID: 19546 Related OSVDB ID: 19549 Related OSVDB ID: 19552 Related OSVDB ID: 19553 Related OSVDB ID: 19557 Related OSVDB ID: 19548 Related OSVDB ID: 19550 Related OSVDB ID: 19551 Related OSVDB ID: 19554 Related OSVDB ID: 19556 Related OSVDB ID: 19558 Related OSVDB ID: 19534 Related OSVDB ID: 19544 Related OSVDB ID: 19545 Related OSVDB ID: 19559 Other Advisory URL: http://morph3us.org/advisories/20050917-vbulletin-3.0.8.txt Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2005-09/0224.html Keyword: BuHa Security-Advisory #3 CVE-2005-3023