AOH :: HP Unsorted O :: BX6025.HTM

Multiple XSS vulnerabilities in OSSIM 2.2.1



Multiple XSS vulnerabilities in OSSIM 2.2.1
Multiple XSS vulnerabilities in OSSIM 2.2.1



================== Summary ===================0D
=0D
Multiple XSS vulnerabilities in OSSIM 2.2.1=0D
=0D
Discovered by: CONIX Security (www.conix.fr)=0D 
Public Release Date: 3/31/2010=0D
Vendor: Alienvault (www.alienvault.com)=0D 
Fixed: Yes (3/30/2010)=0D
=0D
============= Technical Details ==============0D
=0D
1. An attacker can redirect a victim to a malicious website by giving him a malicious URL, by social engineering or by phishing:=0D
=0D
Example:=0D
=0D
- http://ossim-server/ossim/nagios/index.php?sensor=www.attacker.com=0D 
=0D
The top links will then point to http://www.attacker.com=0D 
=0D
2. All the pages that contains the variable $_SERVER['PHP_SELF'] are vulnerable to an XSS:=0D
=0D
Examples:=0D
=0D
- =0D">http://ossim-server/ossim/control_panel/alarm_console.php/">=0D 
- http://ossim-server/ossim/control_panel/alarm_console.php/')"%20onMouseOver="alert('xss');//=0D 
- ...=0D

The entire AOH site is optimized to look best in Firefox® 3 on a widescreen monitor (1440x900 or better).
Site design & layout copyright © 1986-2014 AOH
We do not send spam. If you have received spam bearing an artofhacking.com email address, please forward it with full headers to abuse@artofhacking.com.