|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
[SA20998] MIMEsweeper for Web Cross-Site Scripting and Denial of Service
From: Secunia Security Advisories (sec-adv
secunia.com)
Date: Mon Jul 10 2006 - 08:02:05 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
----------------------------------------------------------------------
Hardcore Disassembler / Reverse Engineer
Reversing must be a passion as your skills will be challenged
on a daily basis and you will be working several hours
everyday in IDA, Ollydbg, and with BinDiff. Often, it is also
required that you write a PoC or even a working exploit to
prove that an issue is exploitable.
http://secunia.com/hardcore_disassembler_and_reverse_engineer/
----------------------------------------------------------------------
TITLE:
MIMEsweeper for Web Cross-Site Scripting and Denial of Service
SECUNIA ADVISORY ID:
SA20998
VERIFY ADVISORY:
http://secunia.com/advisories/20998/
CRITICAL:
Moderately critical
IMPACT:
Cross Site Scripting, DoS
WHERE:
From remote
SOFTWARE:
MIMEsweeper for Web 5.x
http://secunia.com/product/3779/
DESCRIPTION:
Two vulnerabilities have been reported in MIMEsweeper for Web, which
can be exploited by malicious people to cause a DoS (Denial of
Service) and conduct cross-site scripting attacks.
1) Input passed via the URL when attempting to access blocked web
sites (as defined by the MIMEsweeper policy) isn't properly sanitised
before being returned to the user via an error page. This can be
exploited to execute arbitrary HTML and script code in a user's
browser session in context of an arbitrary blocked web site.
Example:
http://[blocked web site]/[code]
2) An error in the scanning functionality can be exploited to crash
the Web Policy Engine service via a specially crafted, encrypted RAR
archive.
SOLUTION:
Update to version 5.1.15.
http://www.clearswift.com/support/msw/patch_MswWeb.aspx
PROVIDED AND/OR DISCOVERED BY:
1) Erez Metula
2) Reported by the vendor.
ORIGINAL ADVISORY:
Clearswift:
http://download.mimesweeper.com/www/TechnicalDocumentation/WebReadMeHotfix5115.htm
----------------------------------------------------------------------
About:
This Advisory was delivered by Secunia as a free service to help
everybody keeping their systems up to date against the latest
vulnerabilities.
Subscribe:
http://secunia.com/secunia_security_advisories/
Definitions: (Criticality, Where etc.)
http://secunia.com/about_secunia_advisories/
Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.
----------------------------------------------------------------------
Unsubscribe: Secunia Security Advisories
----------------------------------------------------------------------
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]