Libero Cross-Site Scripting Vulnerability - Security Advisory - SOS-09-001
Release Date. 23-Feb-2009
Vendor Notification Date. 20-Oct-2008
Platform. Windows (verified), possibly others
Affected versions. Libero v5.3 SP5 (verified), possibly others
Severity Rating. Medium
Impact. Cookie/credential theft, impersonation, loss of confidentiality
Attack Vector. Remote
Solution Status. Vendor patch not yet available
CVE reference. CVE-2009-0540
Proof of Concept.
You can test the susceptibility of your system to this issue by entering the following string into the search term form field and clicking 'search'.
A vulnerable site will return the users' session ID.
The vendor has advised that the fix will be made available in Libero v5.5 SP1.
A fix will not be made available for previous versions.
Oliver Greiter from SOS Labs.
Sense of Security is a leading provider of IT security and risk management solutions. Our team has expert skills in assessment and assurance, strategy and architecture, and deployment through to ongoing management. We are Australia's premier application security consultancy and trusted IT security advisor to many of the countries largest organisations.
Sense of Security Pty Ltd
Level 3, 66 King St
Sydney NSW 2000
T: +61 (0)2 9290 4444
F: +61 (0)2 9290 4455