Namo DeepSearch 4.5 Cross-Site Scripting Vulnerability

2006-06-28 / 2006-06-29

Credit: Kil13r

Risk: Low

Local: No

Remote: Yes

CVE: CVE-2006-3264

CWE: CWE-Other

CVSS Base Score: 2.6/10

Impact Subscore: 2.9/10

Exploitability Subscore: 4.9/10

Exploit range: Remote

Attack complexity: High

Authentication: No required

Confidentiality impact: None

Integrity impact: Partial

Availability impact: None

Title:
[Kil13r-SA-20060622-2] Namo DeepSearch 4.5 Cross-Site Scripting Vulnerability
Author:
Kil13r - http://www.kil13r.info/
Local / Remote:
Remote
Timeline:
2006/06/21 - Discovery
2006/06/21 - Vendor notification
2006/06/21 - Vendor response
2006/06/22 - Release
Affected version:
Namo DeepSearch 4.5 or earlier
Not affected version:
Description:
Namo DeepSearch is search engine solution, but that has vulnerability.
It can run arbitrary Javascript code by end user in search engine.
If victim execute arbitrary Javascript code, attacker can steal victim's cookie.
Edit Namo DeepSearch HTML template to workaround.
Proof of Concept code:
None
Proof of Concept example:
http://www.victim.com/cgi-bin/mclient.cgi?p="><script>alert(String.fromC
harCode(88,83,83,32,53580,49828,53944))</script>
Proof of Concept screenshot:
http://www.kil13r.info/sa/xss/deepsearchxss.jpg
-
Igitur qui desiderat pacem, praeparet bellum.

See this note in RAW Version

Vote for this issue:

50%

Thanks for you vote!

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.

Nick (*)

Email (*)

Video

Text (*)

(*) - required fields.

{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1

{{ x.comment }}

Namo DeepSearch 4.5 Cross-Site Scripting Vulnerability

Thanks for you vote!

Thanks for you comment!Your message is in quarantine 48 hours.

Thanks for you comment!
Your message is in quarantine 48 hours.