Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

S21SEC-038-en.txt

🗓️ 18 Oct 2007 00:00:00Reported by Juan de la Fuente CostaType 
packetstorm
 packetstorm🔗 packetstormsecurity.com👁 38 Views

Alcatel Omnivista 4760 Cross-Site Scripting vulnerability discovered in June 2007, allows injecting JavaScript code in text variables through "action" and "Langue" parameters. Alcatel-Lucent released a patch.

Code
`##############################################################  
- S21Sec Advisory -  
##############################################################  
  
Title: Alcatel Omnivista 4760 Cross-Site Scripting  
ID: S21SEC-038-en  
Severity: Medium -  
History: 10.Jun.2007 Vulnerability discovered  
20.Jun.2007 Vendor contacted  
19.Oct.2007 Advisory released  
Authors: Juan de la Fuente Costa ([email protected])  
Pablo Seijo Cajaraville ([email protected])  
URL: http://www.s21sec.com/avisos/s21sec-038-en.txt  
Release: Public  
  
[ SUMMARY ]  
  
Alcatel-Lucent OmniVista 4760 is an innovative, modular platform that   
provides a suite of network management applications.  
This powerful Java-based tool, accessed through a Web browser,   
provides centralized management for the OmniPCX Enterprise.  
  
The platform's open architecture enables today's IT managers and   
administrators to effectively monitor and maintain the  
network, while lowering the company's total cost of ownership. This   
suite of network management applications includes:  
  
* LDAP Directory  
* Configuration  
* Accounting/Performance Management  
* Alarm Notification  
* Network Topology  
  
  
[ AFFECTED VERSIONS ]  
  
This vulnerability has been tested in Alcatel Omnivista 4760.  
  
  
[ DESCRIPTION ]  
  
S21sec has discovered a vulnerability in Alcatel Omnivista 4760 that   
allows injecting JavaScript code in text variables.  
This issue allows javascript code execution in the user browser.  
  
The identified parameters are: "action" and "Langue"  
  
Parameter: action  
  
URL: http://www.somesite.com/php-bin/Webclient.php?   
action=<script>alert("xss")</script>  
  
Parameter: Langue  
  
URL: http://www.somesite.com/?Langue="><script>alert("xss")</script><";  
  
  
[ WORKAROUND ]  
  
Alcatel-Lucent has released a patch to address this vulnerability.   
More info at:  
http://www1.alcatel-lucent.com/psirt/statements/2007003/4760xss.htm  
  
[ ACKNOWLEDGMENTS ]  
  
This vulnerability has been discovered and researched by:  
  
- Juan de la Fuente Costa <[email protected]> S21Sec  
- Pablo Seijo Cajaraville <[email protected]> S21Sec  
  
With special thanks to:  
  
- Miguel Angel Aguilar Bermejo  
  
  
[ REFERENCES ]  
  
* S21Sec  
http://www.s21sec.com  
http://blog.s21sec.com  
`

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
18 Oct 2007 00:00Current
7.4High risk
Vulners AI Score7.4
alcatel omnivista 4760cross-site scriptingvulnerabilityjavascript code injectionpatchs21secnetwork managementweb browserit managerssecurity advisoryalcatel-lucentvulnerability discoveredvendor contactedadvisory releasedpublic release
38