Next Page >>
URL redirection
SUPPORT COMMUNICATION - SECURITY BULLETIN
Document ID: c03301854
Version: 1
HPSBMU02771 SSRT100558 rev.1 - HP SNMP Agents for Linux, Remote Cross Site Scripting (XSS), URL Redirection
NOTICE: The information in this Security Bulletin should be acted upon as soon as possible.
Release Date: 2012-05-01
Last Updated: 2012-05-01
SUPPORT COMMUNICATION - SECURITY BULLETIN
Document ID: c03301267
Version: 1
HPSBMU02770 SSRT100848 rev.1 - HP Insight Management Agents for Windows Server, Remote Cross Site Request Forgery (CSRF), Cross Site Scripting (XSS), URL Redirection, Unauthorized Modification, Denial of Service (DoS)
NOTICE: The information in this Security Bulletin should be acted upon as soon as possible.
Release Date: 2012-05-01
Last Updated: 2012-05-01
SUPPORT COMMUNICATION - SECURITY BULLETIN
Document ID: c03263573
Version: 1
HPSBMU02759 SSRT100817 rev.1 - HP Onboard Administrator (OA), Remote Unauthorized Access, Unauthorized Information Disclosure, Denial of Service (DoS), URL Redirection
NOTICE: The information in this Security Bulletin should be acted upon as soon as possible.
Release Date: 2012-04-02
Last Updated: 2012-04-02
SUPPORT COMMUNICATION - SECURITY BULLETIN
Document ID: c02735590
Version: 3
HPSBMA02661 SSRT100408 rev.3 - HP SNMP Agents Running on Linux and HP Insight Management Agents Running on Windows, Remote Cross Site Scripting (XSS), URL Redirection, Information Disclosure
NOTICE: The information in this Security Bulletin should be acted upon as soon as possible.
Release Date: 2011-04-19
Last Updated: 2011-05-11
SUPPORT COMMUNICATION - SECURITY BULLETIN
Document ID: c02735590
Version: 1
HPSBMA02661 SSRT100408 rev.1 - HP Proliant Support Pack (PSP) Running on Linux and Windows, Remote Cross Site Scripting (XSS), URL Redirection, Information Disclosure
NOTICE: The information in this Security Bulletin should be acted upon as soon as possible.
Release Date: 2011-04-19
Last Updated: 2011-04-19
SUPPORT COMMUNICATION - SECURITY BULLETIN
Document ID: c02735590
Version: 2
HPSBMA02661 SSRT100408 rev.2 - HP Proliant Support Pack (PSP) Running on Linux and Windows, Remote Cross Site Scripting (XSS), URL Redirection, Information Disclosure
NOTICE: The information in this Security Bulletin should be acted upon as soon as possible.
Release Date: 2011-04-19
Last Updated: 2011-05-02
Application: Claroline eLearning and eWorking platform
Versions Affected: 1.8.9
Vendor URL: http://www.claroline.net/
Bug: Multiple XSS, Phishing Through URL Redirection, Change User Password XSRF Vulnerability
Exploits: YES
Reported: 04.07.2008
Vendor Response: 07.07.2008
Solution: YES
Date of Public Advisory: 18.07.2008
Parallels Plesk 7.0 - 8.2 | Open URL Redirection Vulnerability
1. OVERVIEW
The Plesk versions from 7.0 to 8.2 are vulnerable to Open URL
Redirection when "Enable webuser@domain.com" access format, a new
feature introduced in Plesk 7.0, is enabled in user preferences.
SUPPORT COMMUNICATION - SECURITY BULLETIN
Document ID: c02514953
Version: 1
HPSBMA02584 SSRT100230 rev.1 - HP System Management Homepage (SMH) for Linux and Windows, Remote URL Redirection
NOTICE: The information in this Security Bulletin should be acted upon as soon as possible.
Release Date: 2010-09-22
Last Updated: 2010-09-22
***********
XOOPS system has multiple security vulnerabilities:
1. Local File Include
2. Url redirection Phishing
Details
*******
Summary:
RSA(r) Federated Identity Manager may be impacted by potential arbitrary
URL redirection vulnerability that may be exploited by malicious people
to bypass certain security restrictions. Security hot fix [hot fix
numbers, see below], containing the resolution to this issue, should be
applied at the earliest opportunity.
1. OVERVIEW
The CubeCart 3.0.20 and lower versions are vulnerable to Open URL Redirection.
2. BACKGROUND
CubeCart is an "out of the box" ecommerce shopping cart software
solution which has been written to run on servers that have PHP &
MySQL support. With CubeCart you can quickly setup a powerful online
1. OVERVIEW
The CubeCart 3.0.20 and lower versions are vulnerable to Open URL Redirection.
2. BACKGROUND
CubeCart is an "out of the box" ecommerce shopping cart software
solution which has been written to run on servers that have PHP &
MySQL support. With CubeCart you can quickly setup a powerful online
allows an attacker to insert content from a malicious site within the context of Sitecore. A user could be tricked into thinking
the content originated from the trusted site when infact it is from the attacker's.
II. DETAILS
An Open URL Redirection Vulnerability exists in Sitecore CMS 6.4 (and previous versions) which allows an arbitrary URL (content)
to be injected into the page. The Sitecom titlebar window is still shown to the user however the content that is loaded comes from
the user specified location. An attacker could provide content from a malicious site which the user would believe originated from
the trusted site - particularly with the Sitecom titlebar window still present. This URL is accessible by unauthenticated users -
therefore ideal for a phishing attack.
User can insert HTML or execute arbitrary JavaScript code within the
vulnerable application. The vulnerabilities arise due to insufficient
input validation in multiple input fields throughout the application.
Successful exploitation of these vulnerabilities could result in, but
not limited to, compromise of the application, theft of
cookie-based authentication credentials, arbitrary url redirection,
disclosure or modification of sensitive data and phishing attacks.
----------------------------------------------------------------------
Proof of Concept:
SUPPORT COMMUNICATION - SECURITY BULLETIN
Document ID: c02518794
Version: 1
HPSBMA02583 SSRT100070 rev.1 - HP System Management Homepage (SMH) for Linux and Windows, Remote URL Redirection
NOTICE: The information in this Security Bulletin should be acted upon as soon as possible.
Release Date: 2010-09-22
Last Updated: 2010-09-22
The vulnerability exists due to the “/gwtTeaming.rpc” code not properly sanitizing user input into the “What Are You Working On?” or Micro Blog entry field. Also, the application fails to encode the output allowing for the execution of the script.
Tested on: Cent OS 5.5 (kernel 2.6.18-194), MySQL Version 14.12 Distribution 5.0.77, and Novell Vibe 3 BETA OnPrem.
Affected software versions: Vibe 3 BETA OnPrem
Impact: Any user who can view another user’s Micro Blog entry is vulnerable to this XSS attack. Successful exploitation of this vulnerability could result in session cookie theft, session hijacking, URL redirection, and possible operating system code execution on the targeted victim’s host.
Fixed in: Fixed in the final shipping version of Novell Vibe OnPrem 3
Remediation guidelines: Update to the final shipping version of Novell Vibe OnPrem 3
relation values.
CVE-2013-1843
Missing user input validation in the access tracking mechanism could lead
to arbitrary URL redirection.
.
Note: the fix will break already published links. Upstream advisory on
http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2013-001/
has more information on how to mitigate that.
EW-7206APg: http://www.edimax.com/en/produce_detail.php?pl1_id=25&pl2_id=134&pl3_id=359&pd_id=18
EW-7209APg: http://www.edimax-de.eu/de/support_detail.php?pd_id=18&pl1_id=1
============ Vulnerability Overview: ============
* URL Redirection:
Parameter: submit-url and wlan_url
http://192.168.178.175/goform/formWirelessTbl?submit-url=http://www.google.de
http://192.168.178.175/goform/formWlanSetup?apMode=0&band=2&ssid=test&chan=11&macAddrValue=5C260A2BF03F&wlanMacClone=0&wlanMac=000000000000&autoMacClone=no&repeaterSSID=&wlLinkMac1=000000000000&wlLinkMac2=000000000000&wlLinkMac3=000000000000&wlLinkMac4=000000000000&wlLinkMac5=000000000000&wlLinkMac6=000000000000&x=57&y=20&wlan-url=http://www.pwnd.pwnd
1. OVERVIEW
CubeCart 5.0.7 and lower versions are vulnerable to Open URL Redirection.
2. BACKGROUND
CubeCart is an "out of the box" ecommerce shopping cart software
solution which has been written to run on servers that have PHP &
MySQL support. With CubeCart you can quickly setup a powerful online
> #############################################################
> #
> # Product: Outlook Web Access for Exchange 2003
> # Vendor: Microsoft (www.microsoft.com)
> # CVD ID: CVE-2008-1547
> # Subject: URL Redirection Vulnerability
> # Risk: Medium
> # Effect: Remotely exploitable
> # Author: Martin Suess <martin.suess@csnc.ch>
> # Date: October 15th 2008
> #
#############################################################
#
# Product: Outlook Web Access for Exchange 2003
# Vendor: Microsoft (www.microsoft.com)
# CVD ID: CVE-2008-1547
# Subject: URL Redirection Vulnerability
# Risk: Medium
# Effect: Remotely exploitable
# Author: Martin Suess <martin.suess@csnc.ch>
# Date: October 15th 2008
#
| Vulnerable Versions: 8.0, ? |
|--------------------------------------------------------------|
|------------------------------------------------------------------------------|
| Phishing via URL Redirection: |
| "/><meta http-equiv="refresh" content="0; url=http://www.securestate.com" /> |
|------------------------------------------------------------------------------|
| JavaScript Execution Proof of Concept: |
| " /><div onmouseover="alert('xss')" style="javascript:visibility:visible;"> |
|------------------------------------------------------------------------------|
The vulnerability arises due to the administrator core components
failing to properly sanitize user-supplied input in the "search"
variable. Successful exploitation of this vulnerability could result
in, but not limited to, compromise of the application, theft of
cookie-based authentication credentials, arbitrary url redirection,
disclosure or modification of sensitive data and phishing attacks.
An attacker can send a link with the exploit to an administrator whose
access could compromise the application. The following PoC is
gives managers, recruiters and candidates the ability to manage every
phase of finding, recruiting, hiring, and tracking new employees. It is a
part of Oracle E-business suite.
Discussion:
The Oracle I-Recruitment suite possesses web URL redirection vulnerability
in OA.jsp web page. It is possible to redirect a user to malicious domain
after logging out of the application. The vulnerable parameter is
p_home_url. When a value is passed to this parameter, it becomes
persistent in nature and remains active until the session is expired.
The vulnerable Link:
1. OVERVIEW
CubeCart 4.4.6 and lower versions are vulnerable to Open URL Redirection.
2. BACKGROUND
CubeCart is an "out of the box" ecommerce shopping cart software
solution which has been written to run on servers that have PHP &
MySQL support. With CubeCart you can quickly setup a powerful online
1. OVERVIEW
F5 FirePass SSL VPN is vulnerable to Open URL Redirection.
2. BACKGROUND
F5 FirePass SSL VPN provides secure remote access to enterprise
applications and data for users over any device or network while
protecting your corporate. (See
1. OVERVIEW
SilverStripe 2.4.7 and lower versions are vulnerable to Open URL Redirection.
2. BACKGROUND
SilverStripe CMS is easy for both developers and content authors to
work with. The SilverStripe Framework keeps the code tucked away
neatly so that it can be accessed easily by programmers but does not
1. OVERVIEW
SilverStripe 2.4.7 and lower versions are vulnerable to Open URL Redirection.
2. BACKGROUND
SilverStripe CMS is easy for both developers and content authors to
work with. The SilverStripe Framework keeps the code tucked away
neatly so that it can be accessed easily by programmers but does not
1. OVERVIEW
ocPoral CMS 7.1.5 and lower versions are vulnerable to Open URL Redirection.
2. BACKGROUND
ocPortal is the website Content Management System (a CMS) for building
and maintaining a dynamic website. ocPortal's powerful feature-set
means there's always a way to accomplish your vision. Not only does
Next Page>>
|
