Centra 7 XSS Exploit

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: Centra 7 XSS Exploit
From: Clorox <elac2k@xxxxxxxxxxx>
Date: 12 Apr 2005 19:05:31 -0000
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm


Centra is a program used by businesses and colleges, it allows users to stream 
microsoft office and other applications over the web in a nice enviroment with 
voip options.  However on root directory when you go in to enroll for a session 
if you create or modify your username, first name, or last name to contain any 
html code it will be ran.  For instance:

&lt;script&gt;alert("hi");&lt;/script&gt; will result in a popup box that says 
hi

You can put iframes in the portal to keep people from being able to access the 
application.  

FIX: Use the cleartext function to strip fields that users have input to.

- Clorox
http://g00ns.com
http://g00ns-forums.com

Prev by Date: iDEFENSE Security Advisory 04.12.05: Microsoft Internet Explorer DHTML Engine Race Condition Vulnerability
Next by Date: IRM 011: Sygate,Security Agent (Sygate Secure Enterprise) Fail Open DoS
Previous by thread: iDEFENSE Security Advisory 04.12.05: Microsoft Internet Explorer DHTML Engine Race Condition Vulnerability
Next by thread: IRM 011: Sygate,Security Agent (Sygate Secure Enterprise) Fail Open DoS
Index(es):
- Date
- Thread