Dennis' Domino Blog

Dennis' Domino Blog
« Xpages and Security: Can an expert please help? OWASP and XpagesDe Groene Zaak officieel van start met InterfaceFLOR als founding partner »

Multiple IBM Products Login Page Cross Site Scripting Vulnerability

Permalink 02/26/10 09:16, by Dennis van Remortel, Categories: IBM, Lotus, security
Found here:

Bugtraq ID:	38412
Class:		Input Validation Error
CVE: 	
Remote:		Yes
Local:		No
Published:	Feb 25 2010 12:00AM
Updated:	Feb 25 2010 03:41PM
Credit:		Oren Hafif
Vulnerable:	IBM Websphere Portal 6.1.5 0
			IBM Websphere Portal 6.1 3
			IBM Websphere Portal 6.1 2
			IBM Websphere Portal 6.1 1
			IBM Websphere Portal 6.1
			IBM Websphere Portal 5.1 5
			IBM Websphere Portal 5.1 4
			IBM Websphere Portal 5.1 3
			IBM Websphere Portal 5.1 2
			IBM Websphere Portal 5.1 1
			IBM Websphere Portal 6.1
			IBM Websphere Portal 6.0
			IBM Websphere Portal 5.1
			IBM Lotus Web Content Management 6.1.5 0
			IBM Lotus Web Content Management 6.1 3
			IBM Lotus Web Content Management 5.1 5
			IBM Lotus Web Content Management 5.1 4
			IBM Lotus Web Content Management 5.1 3
			IBM Lotus Web Content Management 5.1 1
			IBM Lotus Web Content Management 5.1
			IBM Lotus Web Content Management 6.0
			IBM Lotus Quickr 8.1.1 1
			IBM Lotus Quickr 8.1.1
			IBM Lotus Quickr 8.0 2
			IBM Lotus Quickr 8.1
			IBM Lotus Quickr 8.0


Multiple IBM products are prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input.

An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may allow the attacker to steal cookie-based authentication credentials and to launch other attacks.

This issue affects IBM Lotus Web Content Management, WebSphere Portal, and Lotus Quickr. 


Attackers can exploit this issue by enticing an unsuspecting user to follow a malicious URI.

The following example URIs are available:

http://www.example.com/wps/wcm/webinterface/login/login.jsp?";><script>maliciou s_script</script><b%20"

http://www.example.com/wps/wcm/webinterface/login/login.jsp?"; style="tr:expression(malicious_script) 


References:

    * Cross Site Scripting Vulnerability in IBM WebSphere Portal Server & Lotus WCM (Hacktics)
    * Lotus Quickr (IBM)
    * Lotus Web Content Management (IBM)
    * WebSphere Portal Homepage (IBM)
    * Security Risk with Fix Available: Web Content Management login page vulnerable t (IBM)
Leave a comment »

No feedback yet

Leave a comment


Your email address will not be revealed on this site.

Your URL will be displayed.
PoorExcellent
(Line breaks become <br />)
(Name, email & website)
(Allow users to contact you through a message form (your email will not be revealed.)

Dennis' Domino Blog

Yet another Domino/Websphere Admin blog.

About me:
Lotus Notes/Domino Admin
Websphere Commerce Admin
sceptic
critic

Downloads

Search

Categories

XML Feeds

What is RSS?

Twitter

Planet Lotus

Usefull links

free blog software

©2010 by Dennis van Remortel

Contact | Blog theme by Asevo | multiple blogs | webhosting