AOH :: HP Unsorted S :: B06-2511.HTM

Seditio cross site scripting vulnerability



Seditio Cross Site Scripting Vulnerability
Seditio Cross Site Scripting Vulnerability



Advisory : Cross Site Scripting in Seditio (http://www.neocrome.net)
Release Date  : 24/05/2005
Last Modified : 24/05/2005
Author : Yunus Emre Yilmaz ( http://yns.zaxaz.com)
Application   : Seditio v102 ( maybe older versions)
Risk          : Critical

Problem :
    Ldu's logging all referer info for administrator.If an attacker change the referer value with malicious
js codes, the code will be executed in administration page.Referer info is coming from user and can be changed as everything.

Proof Of Concept :
I wrote a simple exploit which can be downloaded from here : http://yns.zaxaz.com/exploits/seditio-exploit.rar

Solution :
I wrote an unofficial security patch which can be downloaded from here : http://yns.zaxaz.com/security-patches/security-patches-seditio-v102-xss-patch.rar
(For offical patches : www.neocrome.net)

Original Advisory :
http://yns.zaxaz.com/advisories/seditio.txt 

The entire AOH site is optimized to look best in Firefox® 3 on a widescreen monitor (1440x900 or better).
Site design & layout copyright © 1986-2014 AOH
We do not send spam. If you have received spam bearing an artofhacking.com email address, please forward it with full headers to abuse@artofhacking.com.