| VID |
21393 |
| Severity |
30 |
| Port |
80, ... |
| Protocol |
TCP |
| Class |
CGI |
| Detailed Description |
The IMP program has the 'status.php3' Cross-Site Scripting Vulnerability.
IMP(Internet Messaging Program) is a popular Web-based E-Mail client package written in PHP for the UNIX systems. IMP 2.2.7 and possible other versions are vulnerable to a Cross-Site Scripting Vulnerability, caused by a failure to the application to properly filter from the URL parameters of the status.php3 script. A remote attacker could create a specially crafted URL link with this vulnerable script containing malicious script code, and then could persuade a target user to click it. Once the URL is clicked, the embedded codes would be executed in the victim's Web browser. A remote attacker could use this vulnerability to steal the victim's cookie-based authentication credentials.
* References:
http://securitytracker.com/alerts/2002/Apr/1003995.html
* Platforms Affected:
IMP 2.2.7 and possible other versions
Conectiva Linux 5.0, 5,1, 6.0, 7.0, 8.0,
Debian Linux 2.2
Caldera OpenLinux Server 3.1.1, Workstation 3.1.1 |
| Recommendation |
Upgrade to the latest version of IMP (2.2.8 or later), available from the Horde Web site at http://www.horde.org/imp/
For Debian GNU/Linux 2.2 (potato):
Upgrade to the latest version of IMP (2.2.6-0.potato.5 or later) or Horde (1.2.6-0.potato.5 or later), as listed in Debian Security Advisory DSA-126-1 at http://www.debian.org/security/2002/dsa-126
For Caldera OpenLinux Server and Workstation 3.1 and 3.1.1:
Upgrade to the latest version of IMP (2.2.8-1 or later) or Horde (1.2.8-1 or later), as listed in Caldera International, Inc. Security Advisory CSSA-2002-016.1 at ftp://ftp.sco.com/pub/security/OpenLinux/CSSA-2002-016.1.txt
For Conectiva Linux containing the imp/horde package:
Upgrade to the latest imp package as listed in the Conectiva Linux Announcement CLSA-2002:473 at http://distro.conectiva.com/atualizacoes/?id=a&anuncio=000473
For other distributions:
Contact your vendor for upgrade or patch information. |
| Related URL |
CVE-2002-0181 (CVE) |
| Related URL |
4444 (SecurityFocus) |
| Related URL |
8769 (ISS) |
|
