Info

Disclosure

Dec 01, 2005

Discovery

Unknown

Dates

Exploit

Unknown

Solution

Unknown

Description

WebCalendar contains a flaw that allows an HTTP response splitting vulnerability. This flaw exists because the application does not validate parameter '$ret' upon submission to the 'layers_toggle.php' script. This could allow a user to create a specially crafted URL that would influence or misrepresent how Web content is served, cached or interpreted, leading to a loss of integrity.

Classification

Location: Remote / Network Access
Attack Type: Input Manipulation
Impact: Impact Unknown
Exploit: Exploit Unknown
Disclosure: OSVDB Verified
OSVDB: Web Related

Solution

Currently, there are no known workarounds or upgrades to correct this issue. However, WebCalendar has released a patch to address this vulnerability.

Products

WebCalendar

1.0.1

References

Bugtraq ID: 15673
Secunia Advisory ID: 17848 19240
CVE ID: 2005-3982 (see also: NVD)
Related OSVDB ID: 21382
VUPEN Advisory: ADV-2005-2702
Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2005-12/0005.html
Other Advisory URL: http://vd.lwang.org/webcalendar_multiple_vulns.txt
Vendor Specific Advisory URL: http://www.debian.org/security/2006/dsa-1002
Vendor Specific Solution URL: https://sourceforge.net/tracker/index.php?func=detail&aid=1369439&group_id=3870&atid=303870

Credit

lwang - lwanglwang.org -

Direct URL: http://osvdb.org/21383