|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
[sec-adv] Nokia Electronic Documentation Multiple Vulnerabilities
From: Secunia Security Advisories (sec-adv
secunia.com)
Date: Tue Sep 16 2003 - 07:48:36 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
TITLE:
Nokia Electronic Documentation Multiple Vulnerabilities
SECUNIA ADVISORY ID:
SA9740
VERIFY ADVISORY:
http://www.secunia.com/advisories/9740/
CRITICAL:
Less critical
IMPACT:
Security Bypass, Cross Site Scripting, Exposure of sensitive
information
WHERE:
From local network
SOFTWARE:
Nokia Electronic Documentation (NED) 5.x
DESCRIPTION:
Multiple vulnerabilities have been identified in Nokia Electronic
Documentation (NED) allowing malicious people to see sensitive
information or conduct Cross Site Scripting attacks.
1) It is possible to conduct Cross Site Scripting attacks by
requesting a specially crafted URL.
Example:
http://[victim]/docs/<evil_code>
2) The "location" parameter isn't properly verified allowing
malicious people to access arbitrary resources. This could be
exploited to see contents of directories or to use NED as an open
proxy.
http://[victim]/docs/NED?action=retrieve&location=.
http://[victim]/docs/NED?action=retrieve&location=http://[another_server]/
The vulnerabilities have been reported in version 5.0.
SOLUTION:
Nokia has planned to release a new version early 2004.
Nokia states that NED shouldn't be accessible except for trusted
staff and is designed to be placed on a seperate network.
REPORTED BY / CREDITS:
Ollie Whitehouse, stake
ORIGINAL ADVISORY:
http://www.atstake.com/research/advisories/2003/a091503-1.txt
----------------------------------------------------------------------
Secunia recommends that you verify all advisories you receive, by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.
Contact details:
Web : http://www.secunia.com/
E-mail : supportsecunia.com
Tel : +45 7020 5144
Fax : +45 7020 5145
----------------------------------------------------------------------
Unsubscribe: Secunia Security Advisories
----------------------------------------------------------------------
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]