WebSense Blocked Site XSS

2003-12-03T02:14:32
ID OSVDB:2901
Type osvdb
Reporter OSVDB
Modified 2003-12-03T02:14:32

Description

Vulnerability Description

WebSense Enterprise contains a flaw that allows a remote cross site scripting attack. his flaw exists because the application does not validate URLs in the blocked site error messages upon submission to the WebSense proxy. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

Solution Description

Install the vendor supplied patch/upgrade provided to mitigate this vulnerability. There are no known workarounds.

Short Description

WebSense Enterprise contains a flaw that allows a remote cross site scripting attack. his flaw exists because the application does not validate URLs in the blocked site error messages upon submission to the WebSense proxy. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

Manual Testing Notes

Proof of Concept: http://BlockedSite?<SCRIPT>alert('hello')</SCRIPT>

References:

Secunia Advisory ID:10368 Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2003-12/0031.html ISS X-Force ID: 13898 Bugtraq ID: 9149