Full Disclosure mailing list archives
Lycos HTMLGear Guestbook Script Injection Vulnerability
From: mattmurphy () kc rr com (Matthew Murphy)
Date: Sat, 14 Sep 2002 17:13:13 -0500
Lycos offers several advanced web applications through a service called HTMLGear. Among the services offered are guestbooks. A vulnerability exists in the Lycos guestbook that could enable someone to launch an attack against visitors whose browsers supported inline CSS (IE, for example). By specifying an e-mail address/web page URL like the following: " STYLE="expression([javascript]) The JavaScript block will execute. Some less-paranoid versions of the guestbook also allow a typical IMG attack: <IMG SRC="javascript:[javascript]"> This will yield the same results in many cases.
Current thread:
- Lycos HTMLGear Guestbook Script Injection Vulnerability Matthew Murphy (Sep 14)