SonicWall SOHO3内容阻止脚本注入漏洞

SonicWall SOHO3内容阻止脚本注入漏洞

漏洞ID 1106732 漏洞类型 跨站脚本
发布时间 2002-05-17 更新时间 2002-12-31
图片[1]-SonicWall SOHO3内容阻止脚本注入漏洞-安全小百科CVE编号 CVE-2002-2341
图片[2]-SonicWall SOHO3内容阻止脚本注入漏洞-安全小百科CNNVD-ID CNNVD-200212-799
漏洞平台 Multiple CVSS评分 4.3
|漏洞来源
https://www.exploit-db.com/exploits/21453
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200212-799
|漏洞详情
SonicWALLSOHO36.3.0.0版本contentblocking存在跨站脚本攻击(XSS)漏洞。远程攻击者借助封锁的URL注入任意web脚本。
|漏洞EXP
source: http://www.securityfocus.com/bid/4755/info

The Sonicwall SOHO3 is an Internet security appliance that provides firewall security solutions.

Reportedly, a vulnerability exists in the product that allows for a script injection attack to be launched from a malicious user within the internal LAN.

It is possible to configure Sonicwall to block domains from a list of user entered domains. Sonicwall will deny local users access to the websites that have been blocked. A malicious user may be able to inject script code as part of a URL of a blocked domain. Attempts to access blocked domains will be entered into the log files of Sonicwall. An administrator viewing the log files will automatically cause the malicious script code execute.

If the attacker's script code is injected into the logfile then the administrator will not be able to access the log normally. To regain access to the logs the appliance will need to be rebooted. It should be noted that rebooting the appliance will cause the logs to be cleared and will effectively eliminate any indication in the logs of which user initiated the attack.

It is possible for a malicious remote user to exploit this issue by crafting a URL of a known blocked domain that includes script code, and enticing a local user into following the link. 

bannerserver.gator.com/<SCRIPT>window.location.href="http://www.offroadwarehouse.com";</SCRIPT>

The script code will redirect a user to a different site.
|参考资料

来源:BID
名称:4755
链接:http://www.securityfocus.com/bid/4755
来源:XF
名称:sonicwall-soho3-script-injection(9103)
链接:http://www.iss.net/security_center/static/9103.php

相关推荐: HPUX口令命令缓冲区溢出漏洞

HPUX口令命令缓冲区溢出漏洞 漏洞ID 1207540 漏洞类型 缓冲区溢出 发布时间 1997-05-14 更新时间 1997-05-14 CVE编号 CVE-1999-0962 CNNVD-ID CNNVD-199705-014 漏洞平台 N/A CVS…

© 版权声明
THE END
喜欢就支持一下吧
点赞0
分享