what you don't know can hurt you
Home Files News &[SERVICES_TAB]About Contact Add New

Sun Glassfish Woodstock Project 4.2 XSS

Sun Glassfish Woodstock Project 4.2 XSS
Posted May 5, 2009
Site dsecrg.com

Sun Glassfish Woodstock Project version 4.2 suffers from a linked cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | 8e40bba23f7f8e6e166c99ad273d2e3cf32b073900a61c2fa052caae0634edbc
Download | Favorite | View

Sun Glassfish Woodstock Project 4.2 XSS

Change Mirror Download
Digital Security Research Group [DSecRG] Advisory       #DSECRG-09-038

Original advisory: http://dsecrg.com/pages/vul/show.php?id=138

Application:                Sun Glassfish Woodstock Project (part of Glassfish Enterprise Server)
Versions Affected:          4.2
Vendor URL:                 https://woodstock.dev.java.net/
Bug:                        Linked XSS Vulnerability
Exploits:                   YES
Reported:                   19.03.2009
Vendor response:            20.03.2009
Solution:                   YES    
Date of Public Advisory:    05.05.2009
Author:                     Digital Security Research Group [DSecRG] (research [at] dsecrg [dot] com)



Description
***********

Woodstock components are User Interface Components for the web, based on Java Server Faces and AJAX.

Woodstock also is part Glassfish Enterprise Server.

Woodstock has linked XSS vulnerability in 404 Error page.



Details
*******

Using this vulnerability attacker can steal admin's cookie and then 
authentificate as administrator or perform certain administrative 
actions.

Attacker can inject XSS in URL string using UTF-7 encoding.

Exploiting this issue required Auto-Select encoding in browser 
configuration.

Example:

http://[server]/theme/META-INF/>+ACJ-+AD4APB-SCRIPT+AD7-alert(+ACI-DSecRG_XSS+ACI-)+ADz-/SCRIPT+AD7-



Solution
********

This security vulnerabilities fixed in CVS.

The following link to the commit email message for the changes to fix these issue:

https://woodstock.dev.java.net/servlets/ReadMsg?list=cvs&msgNo=4041



Credits
*******

http://www.nabble.com/Re:--DSECRG--Sun-Glassfish-Multiple-Security-Vulnerabilities-p23002524.html

About
*****

Digital Security is leading IT security company in Russia, providing information security consulting, audit and penetration testing services, risk analysis and ISMS-related services and certification for ISO/IEC 27001:2005 and PCI DSS standards. Digital Security Research Group focuses on web application and database security problems with vulnerability reports, advisories and whitepapers posted regularly on our website.


Contact:    research [at] dsecrg [dot] com
            http://www.dsecrg.com 
            http://www.dsec.ru

Login or Register to add favorites

File Archive:

June 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jun 1st
    0 Files
  • 2
    Jun 2nd
    0 Files
  • 3
    Jun 3rd
    18 Files
  • 4
    Jun 4th
    21 Files
  • 5
    Jun 5th
    0 Files
  • 6
    Jun 6th
    57 Files
  • 7
    Jun 7th
    6 Files
  • 8
    Jun 8th
    0 Files
  • 9
    Jun 9th
    0 Files
  • 10
    Jun 10th
    12 Files
  • 11
    Jun 11th
    27 Files
  • 12
    Jun 12th
    38 Files
  • 13
    Jun 13th
    16 Files
  • 14
    Jun 14th
    14 Files
  • 15
    Jun 15th
    0 Files
  • 16
    Jun 16th
    0 Files
  • 17
    Jun 17th
    16 Files
  • 18
    Jun 18th
    26 Files
  • 19
    Jun 19th
    15 Files
  • 20
    Jun 20th
    18 Files
  • 21
    Jun 21st
    8 Files
  • 22
    Jun 22nd
    0 Files
  • 23
    Jun 23rd
    0 Files
  • 24
    Jun 24th
    19 Files
  • 25
    Jun 25th
    5 Files
  • 26
    Jun 26th
    13 Files
  • 27
    Jun 27th
    42 Files
  • 28
    Jun 28th
    9 Files
  • 29
    Jun 29th
    0 Files
  • 30
    Jun 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Site Links
News by Month
News Tags
Files by Month
File Tags
File Directory
About Us
History & Purpose
Contact Information
Terms of Service
Privacy Statement
Copyright Information
Services
Security Services
Hosting By
Rokasec
close