Netrix X-Site Manager product_details.php product_id Variable XSS

2006-01-18T05:03:20
ID OSVDB:22634
Type osvdb
Reporter Preddy(lil.turk@email.com)
Modified 2006-01-18T05:03:20

Description

Vulnerability Description

Netrix X-Site Manager contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'product_id' variable upon submission to the 'product_details.php' script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

Solution Description

Currently, there are no known upgrades, patches, or workarounds available to correct this issue.

Short Description

Netrix X-Site Manager contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'product_id' variable upon submission to the 'product_details.php' script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

Manual Testing Notes

http://[target]/product_details.php?product_id="><script>alert(document.cookie)</script>

References:

Vendor URL: http://www.netrix.ltd.uk/ Secunia Advisory ID:18537 Other Advisory URL: http://osvdb.org/ref/22/22634-x-site.txt FrSIRT Advisory: ADV-2006-0253 CVE-2006-0378 Bugtraq ID: 16313