Info

Disclosure

Apr 05, 2005

Discovery

Unknown

Dates

Exploit

Apr 05, 2005

Solution

Unknown

Description

Active Auction House contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'itemid' variable upon submission to the watchthisitem.asp script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

Classification

Location: Remote / Network Access
Attack Type: Input Manipulation
Impact: Loss of Confidentiality, Loss of Integrity
Exploit: Exploit Public
OSVDB: Web Related

Solution

Currently, there are no known upgrades, patches, or workarounds available to correct this issue.

Products

ActiveWebSoftwares.com

Active Auction House

3.6

References

Security Tracker: 1013649
Bugtraq ID: 13036 13038 13039
Secunia Advisory ID: 14839
Related OSVDB ID: 15281 15282 15283 15284 15285 15286 15287
ISS X-Force ID: 19975
CVE ID: 2005-1030 (see also: NVD)
Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2005-04/0079.html
http://marc.theaimsgroup.com/?l=bugtraq&m=111280834000432&w=2
Other Advisory URL: http://digitalparadox.org/advisories/aass.txt
Vendor URL: http://www.activewebsoftwares.com/

Credit

Diabolic Crab - dcrabhackerscenter.com - Personal Page

Direct URL: http://osvdb.org/15287