[eVuln] E-Blah Platinum 'Referer' XSS Vulnerability

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: [eVuln] E-Blah Platinum 'Referer' XSS Vulnerability
From: alex@xxxxxxxxx
Date: 2 Mar 2006 20:17:21 -0000
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm

New eVuln Advisory:
E-Blah Platinum 'Referer' XSS Vulnerability
http://evuln.com/vulns/83/summary.html

--------------------Summary----------------
eVuln ID: EV0083
CVE: CVE-2006-0829
Software: E-Blah Platinum
Sowtware's Web Site: http://www.eblah.com
Versions: 9.7
Critical Level: Moderate
Type: Cross-Site Scripting
Class: Remote
Status: Patched
Exploit: Available
Solution: Available
Discovered by: Aliaksandr Hartsuyeu (eVuln.com)

-----------------Description---------------
Vulnerable script: Code/Routines.pl

Environment variable 'HTTP_REFERER' isn't properly sanitized. This can be used 
to post HTTP query with fake Referer value which may contain arbitrary html or 
script code. This code will be executed when administrator will open "Click 
Log".

Administrator's login and password are threatened.


--------------Exploit----------------------
Available at: http://evuln.com/vulns/83/exploit.html

--------------Solution---------------------
Vendor-provided patch is available here:

http://www.eblah.com/forum/m-1140116897/

--------------Credit-----------------------
Discovered by: Aliaksandr Hartsuyeu (eVuln.com)


Regards,
Aliaksandr Hartsuyeu
http://evuln.com - Penetration Testing Services
.

Prev by Date: ProtoVer Sample IMAP testsuite release
Next by Date: [SECURITY] [DSA 981-1] new bmv packages fix arbitrary code execution
Previous by thread: ProtoVer Sample IMAP testsuite release
Next by thread: [SECURITY] [DSA 981-1] new bmv packages fix arbitrary code execution
Index(es):
- Date
- Thread