SiteStudio guestbook cross-site scripting

sitestudio-guestbook-xss (20496)

Medium Risk

Description:

SiteStudio is vulnerable to cross-site scripting. A remote attacker could embed malicious script in the name field of the guestbook which, once the guestbook is viewed, would be executed in the victim's Web browser within the security context of the hosting site. An attacker could use this vulnerability to steal the victim's cookie-based authentication credentials, obtain sensitive information or perform actions as the victim.

Platforms Affected:

• Positive Software, SiteStudio 1.6 final
• Positive Software, SiteStudio 1.6 patch

Remedy:

Apply the update for this vulnerability dated 6May2005, available from the SiteStudio Update Web page. See References.

Consequences:

Gain Access

References:

• EXPL-A-2005-008 exploitlabs.com Advisory 037 , persistant XSS in the guestbook- Site Studio at http://exploitlabs.com/files/advisories/EXPL-A-2005-008-sitestudio.txt.
• Full-Disclosure Mailing List, Mon May 09 2005 - 07:57:25 CDT, SiteStudio at http://archives.neohapsis.com/archives/fulldisclosure/2005-05/0138.html.
• Positive Software- SiteStudio Home page, About SiteStudio - Positive Software Corporation at https://www.psoft.net/SS/site_studio_info.html.
• SiteStudio Update Web page, SiteStudio 1.6 Security Update at http://www.psoft.net/SS/ss_16_security_update_guestbook.html.
• BID-13554: Positive Software Corporation SiteStudio HTML Injection Vulnerability
• CVE-2005-1605: Cross-site scripting (XSS) vulnerability in the guestbook for SiteStudio 1.6 allows remote attackers to inject arbitrary web script or HTML via the name field to (1) psoft.guestbook.GuestBookServ in Standalone Site Studio or (2) E-Guest_sign.pl in Integrated Site Studio with H-Sphere.
• SA15286: SiteStudio and H-Sphere "name" Script Insertion Vulnerability

Reported:

May 10, 2005

The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.

Copyright (c) 1994-2008 Internet Security Systems, Inc. All rights reserved worldwide.

For corrections or additions please email xforce@iss.net

Return to the main page