Info

Disclosure

Aug 25, 2009

Discovery

Aug 24, 2009

Dates

Exploit

Aug 25, 2009

Solution

Aug 25, 2009

Description

SimpleID contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 's' parameter upon submission to the 'index.php' script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

Classification

Location: Remote / Network Access
Attack Type: Input Manipulation
Impact: Loss of Integrity
Solution: Upgrade
Exploit: Exploit Public
Disclosure: Vendor Verified, Vendor Verified, Coordinated Disclosure
OSVDB: Web Related

Solution

Upgrade to version 0.6.5 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Products

SimpleID	SimpleID	0.6.4
		0.1
		0.2
		0.2.1
		0.2.2
		0.5
		0.5.1
		0.6
		0.6.1
		0.6.2
		0.6.3

References

CVE ID: 2009-4972 (see also: NVD)
Other Advisory URL: http://blog.n0where.org/post/171292151
Vendor URL: http://simpleid.sourceforge.net/
Vendor Specific News/Changelog Entry: http://simpleid.sourceforge.net/advisories/sa-2009-1
http://sourceforge.net/tracker/?func=detail&aid=2843998&group_id=203264&atid=984892
Vendor Specific Advisory URL: http://simpleid.sourceforge.net/news/2009/08/security-advisory-sa-2009-1-cross-site-scripting-vulnerability-version-065-released

Credit

Zach Lanier - quinen0where.org -

Direct URL: http://osvdb.org/57327