CVE-2009-0496
CVE-2009-0496
Multiple cross-site scripting (XSS) vulnerabilities in Ignite Realtime Openfire 3.6.2 allow remote attackers to inject arbitrary web script or HTML via the (1) log parameter to (a) logviewer.jsp and (b) log.jsp; (2) search parameter to (c) group-summary.jsp; (3) username parameter to (d) user-properties.jsp; (4) logDir, (5) maxTotalSize, (6) maxFileSize, (7) maxDays, and (8) logTimeout parameters to (e) audit-policy.jsp; (9) propName parameter to (f) server-properties.jsp; and the (10) roomconfig_roomname and (11) roomconfig_roomdesc parameters to (g) muc-room-edit-form.jsp. NOTE: this can be leveraged for arbitrary code execution by using XSS to upload a malicious plugin.
Affected products
n/a · n/apublic PoCs found — 3
exploitdbwww.exploit-db.com/exploits/32677unverifiedexploitdbwww.exploit-db.com/exploits/32679unverifiedexploitdbwww.exploit-db.com/exploits/32678unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
https://bugs.gentoo.org/show_bug.cgi?id=254309http://secunia.com/advisories/33452https://exchange.xforce.ibmcloud.com/vulnerabilities/47834https://exchange.xforce.ibmcloud.com/vulnerabilities/47835https://exchange.xforce.ibmcloud.com/vulnerabilities/47845http://www.coresecurity.com/content/openfire-multiple-vulnerabilitieshttp://www.igniterealtime.org/issues/browse/JM-1506http://www.securityfocus.com/archive/1/499880/100/0/threadedhttp://www.securityfocus.com/bid/32935http://www.securityfocus.com/bid/32937http://www.securityfocus.com/bid/32938http://www.securityfocus.com/bid/32939