Leadhound agent_camp_det.pl Multiple Variable XSS

2006-04-18T03:45:32
ID OSVDB:25054
Type osvdb
Reporter r0t(krustevs@googlemail.com)
Modified 2006-04-18T03:45:32

Description

Vulnerability Description

Leadhound contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'page', 'camp_id', and 'logged' variables upon submission to the agent_camp_det.pl script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

Solution Description

Currently, there are no known upgrades, patches, or workarounds available to correct this issue.

Short Description

Leadhound contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'page', 'camp_id', and 'logged' variables upon submission to the agent_camp_det.pl script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

Manual Testing Notes

/cgi-bin/agent_camp_det.pl?login=r0t&logged=&camp_id=2&page=[XSS] /cgi-bin/agent_camp_det.pl?login=r0t&logged=&camp_id=[XSS] /cgi-bin/agent_camp_det.pl?login=r0t&logged=[XSS] /cgi-bin/agent_camp_det.pl?login=[XSS]

References:

Vendor URL: http://www.leadhoundnetwork.com/ Secunia Advisory ID:19867 Related OSVDB ID: 25037 Related OSVDB ID: 25039 Related OSVDB ID: 25040 Related OSVDB ID: 25041 Related OSVDB ID: 25042 Related OSVDB ID: 25044 Related OSVDB ID: 25023 Related OSVDB ID: 25038 Related OSVDB ID: 25043 Related OSVDB ID: 25046 Related OSVDB ID: 25047 Related OSVDB ID: 25049 Related OSVDB ID: 25050 Related OSVDB ID: 25056 Related OSVDB ID: 25060 Related OSVDB ID: 25031 Related OSVDB ID: 25032 Related OSVDB ID: 25036 Related OSVDB ID: 25045 Related OSVDB ID: 25048 Related OSVDB ID: 25055 Related OSVDB ID: 25059 Related OSVDB ID: 25030 Related OSVDB ID: 25033 Related OSVDB ID: 25034 Related OSVDB ID: 25035 Related OSVDB ID: 25051 Related OSVDB ID: 25052 Related OSVDB ID: 25053 Related OSVDB ID: 25057 Related OSVDB ID: 25058 Other Advisory URL: http://pridels.blogspot.com/2006/04/leadhound-multiple-vuln.html Mail List Post: http://attrition.org/pipermail/vim/2006-April/000728.html CVE-2006-2063