发布时间 :2002-06-25 00:00:00
修订时间 :2016-10-17 22:19:16

[原文]Cross-site scripting vulnerability in Snitz Forums 2000 3.3.03 and earlier allows remote attackers to execute arbitrary script as other Forums 2000 users via Javascript in an IMG tag.

[CNNVD]Snitz Forums 2000图像标签跨站脚本漏洞(CNNVD-200206-053)

        Snitz Forums 2000 3.3.03及其之前版本存在跨站脚本漏洞。远程攻击者借助IMG标签中的Javascript像其他Forums 2000用户一样执行任意脚本。

- CVSS (基础分值)

CVSS分值: 7.5 [严重(HIGH)]
机密性影响: [--]
完整性影响: [--]
可用性影响: [--]
攻击复杂度: [--]
攻击向量: [--]
身份认证: [--]

- CPE (受影响的平台与产品)

cpe:/a:snitz_communications:snitz_forums_2000:3.1:sr4Snitz Communications Snitz Forums 2000 3.1 SR4
cpe:/a:snitz_communications:snitz_forums_2000:3.2.03Snitz Communications Snitz Forums 2000 3.2.03
cpe:/a:snitz_communications:snitz_forums_2000:3.3Snitz Communications Snitz Forums 2000 3.3
cpe:/a:snitz_communications:snitz_forums_2000:3.3.02Snitz Communications Snitz Forums 2000 3.3.02
cpe:/a:snitz_communications:snitz_forums_2000:3.0Snitz Communications Snitz Forums 2000 3.0
cpe:/a:snitz_communications:snitz_forums_2000:3.3.01Snitz Communications Snitz Forums 2000 3.3.01

- OVAL (用于检测的技术细节)


- 官方数据库链接
(官方数据源) MITRE
(官方数据源) NVD
(官方数据源) CNNVD

- 其它链接及资源
(UNKNOWN)  BUGTRAQ  20020227 RE: Open Bulletin Board javascript bug.
(UNKNOWN)  BUGTRAQ  20020227 Snitz 2000 Code Patch (was RE: Open Bulletin Board javascript bug.)
(VENDOR_ADVISORY)  XF  snitz-img-css(8309)
(UNKNOWN)  BID  4192

- 漏洞信息

Snitz Forums 2000图像标签跨站脚本漏洞
高危 跨站脚本
2002-06-25 00:00:00 2006-08-24 00:00:00
        Snitz Forums 2000 3.3.03及其之前版本存在跨站脚本漏洞。远程攻击者借助IMG标签中的Javascript像其他Forums 2000用户一样执行任意脚本。

- 公告与补丁

        The vendor has released a patch which may only be applied to v3.3.03. Users of older versions are advised to upgrade to v3.3.03 and then apply the patch.
        Snitz Forums 2000 Snitz Forums 2000 3.3 .03

- 漏洞信息 (21308)

Snitz Forums 2000 3.0/3.1/3.3 Image Tag Cross-Agent Scripting Vulnerability (EDBID:21308)
asp webapps
2002-02-27 Verified
0 Justin
N/A [点击下载]

Snitz Forums 2000 is ASP-based web forum software. It runs on Microsoft Windows operating systems.

Snitz Forums 2000 allows users to include images in forum messages using image tags, with the following syntax:

[img]url of image[/img]

It is possible to inject arbitrary script code into forum messages via these image tags. Script code will be executed in the browser of the user viewing the forum message, in the context of the website running the vulnerable software. This may allow an attacker to steal cookie-based authentication credentials. 

[img]javasCript:alert('Hello world.')[/img] 		

- 漏洞信息

Snitz Forums 2000 IMG Tag XSS
Remote / Network Access Input Manipulation
Loss of Integrity Solution Unknown
Exploit Public Third-party Verified, Uncoordinated Disclosure

- 漏洞描述

- 时间线

2002-02-27 Unknow
2002-02-27 Unknow

- 解决方案

OSVDB is not aware of a solution for this vulnerability.

- 相关参考

- 漏洞作者

Unknown or Incomplete