WebGlimpse webglimpse.cgi Multiple Variable XSS

2005-12-16T13:02:41
ID OSVDB:21791
Type osvdb
Reporter r0t(krustevs@googlemail.com)
Modified 2005-12-16T13:02:41

Description

Vulnerability Description

WebGlimpse contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'ID' or 'query' variable upon submission to the 'webglimpse.cgi' script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

Solution Description

Currently, there are no known upgrades, patches, or workarounds available to correct this issue.

Short Description

WebGlimpse contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'ID' or 'query' variable upon submission to the 'webglimpse.cgi' script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

Manual Testing Notes

/webglimpse.cgi?query=&ID=1[XSS]

References:

Vendor URL: http://webglimpse.net/ Secunia Advisory ID:18076 Other Advisory URL: http://pridels.blogspot.com/2005/12/webglimpse-xss-vuln.html FrSIRT Advisory: ADV-2005-2966 CVE-2005-4354 CVE-2005-4328 Bugtraq ID: 15916