File: 2227.txt

package info (click to toggle)
snort 2.8.5.2-8
  • links: PTS
  • area: main
  • in suites: squeeze
  • size: 37,692 kB
  • ctags: 25,758
  • sloc: ansic: 177,775; sh: 11,401; makefile: 1,994; yacc: 495; perl: 491; lex: 252; sql: 213
file content (60 lines) | stat: -rw-r--r-- 1,227 bytes parent folder | download | duplicates (8)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
Rule:  

--
Sid:
2227

--
Summary:
This event is generated when an attempt is made to exploit a known 
vulnerability in the PHP application Pod.Board.

--
Impact:
Execution of arbitrary code on the client machine connecting to the host
running the application. Theft of cookie data not limited to 
authentication credentials is possible.

--
Detailed Information:
The forum_details.php script does not properly check data supplied in 
input fields or via URI parameters which leads to HTML injection 
possibilites. This injection can include malicious script of the 
attackers choosing.

--
Affected Systems:
	planetinsanity.de pod.board 1.1

--
Attack Scenarios:
A cross site scripting attack is possible, the attacker would need to 
entice the victim to use a link supplied by the attacker which could 
then divulge login and cookie information.

--
Ease of Attack:
Moderate to Difficult. No exploit software required.

--
False Positives:
None known.

--
False Negatives:
None known.

--
Corrective Action:
Upgrade to the latest non-affected version of the software.

--
Contributors:
Sourcefire Research Team
Brian Caswell <bmc@sourcefire.com>
Nigel Houghton <nigel.houghton@sourcefire.com>

-- 
Additional References:

--