Keene Digital Media Server slideshow.kspx source Variable XSS

2004-09-02T08:05:26
ID OSVDB:9514
Type osvdb
Reporter Dr_insane(dr_insane@pathfinder.gr)
Modified 2004-09-02T08:05:26

Description

Vulnerability Description

Digital Meadi server contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the "source" variable upon submission to the slideshow.kspx script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

Solution Description

Currently, there are no known upgrades, patches, or workarounds available to correct this issue.

Short Description

Digital Meadi server contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the "source" variable upon submission to the slideshow.kspx script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

Manual Testing Notes

http://[victim]/dms/slideshow.kspx?source=[code]

References:

Vendor URL: http://www.keenesoftware.com/html/dms.html Security Tracker: 1011156 Secunia Advisory ID:12423 Related OSVDB ID: 9516 Related OSVDB ID: 9518 Related OSVDB ID: 9515 Related OSVDB ID: 9517