Nullsoft SHOUTcast administrative interface cross-site scripting

shoutcast-admin-interface-xss (32726) The risk level is classified as MediumMedium Risk

Description:

Nullsoft SHOUTcast is vulnerable to cross-site scripting, caused by improper validation of user-supplied input by the administrative interface. A remote attacker could exploit this vulnerability using a specially-crafted URL to inject malicious script into a Web page which would be executed in an admin's Web browser within the security context of the hosting Web site, once the log file is viewed. An attacker could use this vulnerability to steal the victim's cookie-based authentication credentials.

Platforms Affected:

  • Nullsoft, SHOUTcast 1.9.7 and prior

Remedy:

No remedy available as of August 16, 2008.

Consequences:

Gain Access

References:

  • Full-Disclosure Mailing List, Tue Feb 27 2007 - 14:42:37 CST, Nullsoft ShoutcastServer Persistant XSS - 0day at http://archives.neohapsis.com/archives/fulldisclosure/2007-02/0604.html.
  • Nullsoft SHOUTcast Web site, SHOUTcast -Free internet radio! at http://www.shoutcast.com/.
  • BID-22742: Nullsoft Shoutcast Logfile HTML Injection Vulnerability
  • CVE-2007-1229: Cross-site scripting (XSS) vulnerability in the Nullsoft ShoutcastServer 1.9.7 allows remote attackers to inject arbitrary web script or HTML via the top-level URI on the Incoming interface (port 8001/tcp), which is not properly handled in the administrator interface when viewing the log file.
  • FrSIRT/ADV-2007-0775: Nullsoft SHOUTcast Administrative Interface Logfile Cross Site Scripting Vulnerability
  • SA24323: SHOUTcast Logfile Script Insertion Vulnerability

Reported:

Feb 27, 2007

The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.

Copyright (c) 1994-2008 Internet Security Systems, Inc. All rights reserved worldwide.

For corrections or additions please email xforce@iss.net

Return to the main page