BEA WebLogic HTTP TRACE Response XSS

2004-01-27T09:17:35
ID OSVDB:3726
Type osvdb
Reporter OSVDB
Modified 2004-01-27T09:17:35

Description

Vulnerability Description

WebLogic Server and Express contain a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate HTTP TRACE requests upon submission to the server. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

Solution Description

Currently, there are no known workarounds or upgrades to correct this issue. However, Bea has released a patch to address this vulnerability.

Short Description

WebLogic Server and Express contain a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate HTTP TRACE requests upon submission to the server. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

References:

Vendor URL: http://www.bea.com Vendor Specific Advisory URL Security Tracker: 1008866 Secunia Advisory ID:10726 ISS X-Force ID: 14959 CVE-2004-2320 CERT VU: 867593 Bugtraq ID: 9506