ISS X-Force Database: faqomatic-cgi-cmd-css(8066): FAQ-O-Matic fom.cgi cmd= cross-site scripting

FAQ-O-Matic fom.cgi cmd= cross-site scripting

faqomatic-cgi-cmd-css (8066)

Medium Risk

Description:

FAQ-O-Matic is vulnerable to cross-site scripting. A remote attacker could create a malicious URL link with arbitrary script embedded in the cmd= parameter to the fom.cgi script that would cause an error message to be returned in the victim's Web browser containing the embedded script, which would be executed within the security context of the FAQ-O-Matic site. An attacker could use this vulnerability to obtain the victim's cookie-based authentication credentials.

Platforms Affected:

Debian, Debian Linux 2.2
Jon Howell, FAQ-O-Matic 2.711
Jon Howell, FAQ-O-Matic 2.712

Remedy:

Apply the fix for this vulnerability, available from the SourceForge.net Web site. See References.

For Debian GNU/Linux 2.2 (potato):
Upgrade to the latest version of faqomatic (2.603-1.2 or later), as listed in DSA-109-1. See References.

For other distributions:
Contact your vendor for upgrade or patch information.

Consequences:

Obtain Information

References:

BugTraq Mailing List, Mon Feb 04 2002 - 14:33:02 CST, [SUPERPETZ ADVISORY #002- Faq-O-Matic Cross-Site Scripting Vulnerability] at http://archives.neohapsis.com/archives/bugtraq/2002-01/0418.html.
BugTraq Mailing List, Tue Feb 05 2002 - 13:45:18 CST, Faq-O-Matic Cross-Site Scripting at http://archives.neohapsis.com/archives/bugtraq/2002-01/0453.html.
SourceForge.net, SourceForge: Project Info - FAQ-O-Matic at http://sourceforge.net/projects/faqomatic.
BID-16251: Faq-O-Matic Multiple Cross-Site Scripting Vulnerabilities
BID-4023: Faq-O-Matic Cross-Site Scripting Vulnerability
CVE-2002-0230: Cross-site scripting vulnerability in fom.cgi of Faq-O-Matic 2.712 allows remote attackers to execute arbitrary Javascript on other clients via the cmd parameter, which causes the script to be inserted into an error message.
DSA-109: faqomatic -- cross-site scripting vulnerability

Reported:

Feb 04, 2002

The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (IBM Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.

For corrections or additions please email xforce@iss.net

Return to the main page