mhonarc-dev

[Bug #3128] XSS Vulnerabilies

2003-04-05 16:57:13

=================== BUG #3128: LATEST MODIFICATIONS ==================
http://savannah.nongnu.org/bugs/?func=detailbug&bug_id=3128&group_id=1968

Changes by: Earl Hood <earl(_at_)earlhood(_dot_)com>
Date: Sat 04/05/2003 at 17:57 (US/Central)

            What     | Removed                   | Added
---------------------------------------------------------------------------
          Resolution | None                      | Fixed
              Status | Open                      | Closed
       Fixed Release |                           | 2.6.3


------------------ Additional Follow-up Comments ----------------------------
mhtxthtml.pl modified to deal with these cases.

BTW, Why would recognize javascript URLs with whitespace
characters embedded in them?  Kind of stupid if you ask me.



=================== BUG #3128: FULL BUG SNAPSHOT ===================


Submitted by: ehood                   Project: MHonArc                      
Submitted on: Sat 04/05/2003 at 17:54
Category:  MIME Filter                Severity:  5 - Major                  
Bug Group:  Security                  Resolution:  Fixed                    
Assigned to:  None                    Status:  Closed                       
Platform Version:  All                Perl Version:  All                    
Component Version:  <=2.6.2           Fixed Release:  2.6.3                 

Summary:  XSS Vulnerabilies

Original Submission:  Copied from private message:

The following constructs all came out as working javascript or SSI
directives after I installed mhonarc v2.6.2 and ran them through
mhonarc -single:


<!-<link>-#exec foo -->

<img src=foo onerror="alert(1)">

<img lowsrc="javas
cript:alert(2)">

<img lowsrc="javas&#9;cript:alert(3)">


Follow-up Comments
*******************

-------------------------------------------------------
Date: Sat 04/05/2003 at 17:57       By: ehood
mhtxthtml.pl modified to deal with these cases.

BTW, Why would recognize javascript URLs with whitespace
characters embedded in them?  Kind of stupid if you ask me.


CC list is empty


No files currently attached


For detailed info, follow this link:
http://savannah.nongnu.org/bugs/?func=detailbug&bug_id=3128&group_id=1968

---------------------------------------------------------------------
To sign-off this list, send email to majordomo(_at_)mhonarc(_dot_)org with the
message text UNSUBSCRIBE MHONARC-DEV

<Prev in Thread] Current Thread [Next in Thread>