all things security

Open-Xchange AppSuite 7.4.0 Improper Neutralization

Open-Xchange AppSuite 7.4.0 Improper Neutralization
Posted Jan 6, 2014
Authored by Martin Braun

Open-Xchange AppSuite versions 7.4.0 and below suffer from script insertion vulnerabilities.

tags | advisory, vulnerability, xss
advisories | CVE-2013-6997
MD5 | 0d7b5b724a929d1f210d552707e091bc

Open-Xchange AppSuite 7.4.0 Improper Neutralization

Change Mirror Download
Open-Xchange Security Advisory 2014-01-06

Product: Open-Xchange AppSuite
Vendor: Open-Xchange GmbH

Internal reference: 30203 (Bug ID)
Vulnerability type: CWE-80 (Improper Neutralization of Script-Related HTML Tags in a Web Page)
Vulnerable version: 7.4.0 and earlier
Vulnerable component: backend
Fixed version: 7.4.0-rev21, 7.4.1-rev9
Report confidence: Confirmed
Solution status: Fixed by Vendor
Vendor notification: 2013-12-06
Solution date: 2013-12-12
Public disclosure: 2014-01-06
CVE reference: CVE-2013-6997
CVSSv2: 4.1 (AV:N/AC:M/Au:N/C:P/I:N/A:N/E:F/RL:U/RC:C/CDP:ND/TD:H/CR:ND/IR:ND/AR:ND)

Vulnerability Details:
Embedding certain CSS code with wildcard characters within an HTML E-Mail can be used to modify the AppSuite web interface.

Risk:
Malicious CSS code gets applied to the default AppSuite web interface. This may be used to lure users to execute certain functions, phishing attempts or simply making the web interface dysfunctional.

Solution:
Users should update to the latest available patch releases. Users should avoid opening E-Mail attachments from untrusted sources. Users should disable rendering of the HTML content part of E-Mail.


Internal reference: 30098 (Bug ID)
Vulnerability type: CWE-80 (Improper Neutralization of Script-Related HTML Tags in a Web Page)
Vulnerable version: 7.4.0 and earlier
Vulnerable component: office-web
Fixed version: 7.4.0-rev12, 7.4.1-rev6
Report confidence: Confirmed
Solution status: Fixed by Vendor
Vendor notification: 2013-11-29
Solution date: 2013-12-12
Public disclosure: 2014-01-06
CVE reference: CVE-2013-6997
CVSSv2: 5.7 (AV:N/AC:M/Au:N/C:P/I:N/A:N/E:POC/RL:U/RC:C/CDP:LM/TD:H/CR:ND/IR:ND/AR:ND)

Vulnerability Details:
Embedded JavaScript code within office documents gets executed when using crafted hyperlinks with script URL handlers.

Risk:
Malicious script code can be executed within a users context. This can lead to session hijacking or triggering unwanted actions via the web interface (sending mail, deleting data etc.). The user has to actively click a malicious hyperlink in order to trigger the script code.

Solution:
Users should update to the latest available patch releases. Users should avoid opening office documents and hyperlinks from untrusted sources.

Comments

RSS Feed Subscribe to this comment feed

No comments yet, be the first!

Login or Register to post a comment

File Archive:

July 2017

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jul 1st
    2 Files
  • 2
    Jul 2nd
    3 Files
  • 3
    Jul 3rd
    15 Files
  • 4
    Jul 4th
    4 Files
  • 5
    Jul 5th
    15 Files
  • 6
    Jul 6th
    15 Files
  • 7
    Jul 7th
    10 Files
  • 8
    Jul 8th
    2 Files
  • 9
    Jul 9th
    10 Files
  • 10
    Jul 10th
    15 Files
  • 11
    Jul 11th
    15 Files
  • 12
    Jul 12th
    19 Files
  • 13
    Jul 13th
    16 Files
  • 14
    Jul 14th
    15 Files
  • 15
    Jul 15th
    3 Files
  • 16
    Jul 16th
    2 Files
  • 17
    Jul 17th
    8 Files
  • 18
    Jul 18th
    11 Files
  • 19
    Jul 19th
    15 Files
  • 20
    Jul 20th
    15 Files
  • 21
    Jul 21st
    15 Files
  • 22
    Jul 22nd
    7 Files
  • 23
    Jul 23rd
    0 Files
  • 24
    Jul 24th
    0 Files
  • 25
    Jul 25th
    0 Files
  • 26
    Jul 26th
    0 Files
  • 27
    Jul 27th
    0 Files
  • 28
    Jul 28th
    0 Files
  • 29
    Jul 29th
    0 Files
  • 30
    Jul 30th
    0 Files
  • 31
    Jul 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close