{"edition": 1, "title": "Sambar Server create.stm path Variable XSS", "bulletinFamily": "software", "published": "2003-03-27T00:00:00", "lastseen": "2017-04-28T13:20:00", "history": [], "modified": "2003-03-27T00:00:00", "reporter": "Gregory Le Bras(gregory.lebras@security-corporation.com)", "hash": "ee25742fd8259cad2d3dbc71ff76927b91b23f4c6892c221fcbeb35097e89b8f", "viewCount": 26, "href": "https://vulners.com/osvdb/OSVDB:5809", "description": "## Vulnerability Description\nSambar Server contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate path variables upon submission to the create.stm script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.\n## Solution Description\nUpgrade to version 6.0 beta 1 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.\n## Short Description\nSambar Server contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate path variables upon submission to the create.stm script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.\n## Manual Testing Notes\nhttp://[victim]/sysuser/docmgr/create.stm?path=[hostile_code] \n\n## References:\nVendor URL: http://www.sambar.com/security.htm\nSecurity Tracker: 1006390\n[Secunia Advisory ID:8434](https://secuniaresearch.flexerasoftware.com/advisories/8434/)\nOther Advisory URL: http://www.security-corporation.com/advisories-012.html\n[Nessus Plugin ID:11492](https://vulners.com/search?query=pluginID:11492)\nMail List Post: http://archives.neohapsis.com/archives/fulldisclosure/2003-q1/1190.html\nISS X-Force ID: 11634\nBugtraq ID: 7209\n", "affectedSoftware": [{"name": "Sambar Server", "version": "5.1", "operator": "eq"}, {"name": "Sambar Server", "version": "4.1", "operator": "eq"}, {"name": "Sambar Server", "version": "4.2", "operator": "eq"}, {"name": "Sambar Server", "version": "5.0", "operator": "eq"}, {"name": "Sambar Server", "version": "5.3", "operator": "eq"}, {"name": "Sambar Server", "version": "4.4", "operator": "eq"}, {"name": "Sambar Server", "version": "4.0", "operator": "eq"}, {"name": "Sambar Server", "version": "4.3", "operator": "eq"}, {"name": "Sambar Server", "version": "5.2", "operator": "eq"}], "type": "osvdb", "hashmap": [{"key": "affectedSoftware", "hash": "f3284f824ac6f5e7a80d3303f3d38f56"}, {"key": "bulletinFamily", "hash": "f9fa10ba956cacf91d7878861139efb9"}, {"key": "cvelist", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cvss", "hash": "8cd4821cb504d25572038ed182587d85"}, {"key": "description", "hash": "29e6429efa1d4e8b6bcb715a168b5dc3"}, {"key": "href", "hash": "dc0bc382cc93a38d8431d321ff924500"}, {"key": "modified", "hash": "38babd4c338d03662d6821dfc3082912"}, {"key": "objectVersion", "hash": "56765472680401499c79732468ba4340"}, {"key": "published", "hash": "38babd4c338d03662d6821dfc3082912"}, {"key": "references", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "reporter", "hash": "0d5c8571d7a602c5af3dd89f12a2d572"}, {"key": "title", "hash": "30d155308d6f67395f96673a85fd23e4"}, {"key": "type", "hash": "1327ac71f7914948578f08c54f772b10"}], "references": [], "objectVersion": "1.2", "enchantments": {"score": {"value": -0.1, "vector": "NONE", "modified": "2017-04-28T13:20:00"}, "dependencies": {"references": [], "modified": "2017-04-28T13:20:00"}, "vulnersScore": -0.1}, "cvss": {"vector": "NONE", "score": 0.0}, "cvelist": [], "id": "OSVDB:5809"}

{}