Bugtraq mailing list archives

Previous By Date Next
Previous By Thread Next

[SNS Advisory No.47] DeleGate Cross Site Scripting Vulnerability

From: "snsadv () lac co jp" <snsadv () lac co jp>
Date: Fri, 28 Dec 2001 14:17:23 +0900
----------------------------------------------------------------------
SNS Advisory No.47
DeleGate Cross Site Scripting Vulnerability

Problem first discovered: Wed, 26 Dec 2001
Published: Fri, 28 Dec 2001
----------------------------------------------------------------------

Overview:
---------
  DeleGate, a multifunctional Proxy server program, contains a 
  vulnerability related to a cross site scripting.

Problem Description:
--------------------
  DeleGate, a multifunctional Proxy server program, is prone to a cross 
  site scripting vulnerability under the following specific conditions:

  * When there is an URL that displays the error message "403 Forbidden"
  * When the administrator displays his/her own configured error message
    using the MOUNT option

  The configuration that complies with these conditions will result in 
  automatic execution of JavaScript code on the Web user's browser, if 
  the attacker makes the following link, and the user clicks it:

  http://IP_Address_of_DeleGate/<script>alert("aaa");</script>

Tested Versions:
----------------
  DeleGate/7.7.1
  DeleGate/7.7.0

Solution:
---------
  This problem can be eliminated by upgrading to DeleGate/7.8.0, which 
  is available at the following URL:

  http://www.delegate.org/delegate/

Discovered by:
--------------
  Satoshi ISHIZUKA (LAC)
  Keigo YAMAZAKI (LAC)

Disclaimer:
-----------
  All information in these advisories are subject to change without any 
  advanced notices neither mutual consensus, and each of them is released 
  as it is. LAC Co.,Ltd. is not responsible for any risks of occurrences 
  caused by applying those information. 

References:
-----------
  Archive of this advisory:
  http://www.lac.co.jp/security/english/snsadv_e/47_e.html

------------------------------------------------------------------
Secure Net Service(SNS) Security Advisory <snsadv () lac co jp>
Computer Security Laboratory, LAC  http://www.lac.co.jp/security/
-------------------------------------------------------------------
Previous By Date Next
Previous By Thread Next

Current thread: