[原文]Cross-site scripting (XSS) vulnerability in Business Objects InfoView 5.1.4 through 5.1.8 for WebIntelligence 2.7.0 through 2.7.4 allows remote attackers to inject arbitrary web script or HTML via document names when uploading a document.
Discovery of this issue is credited to Corsaire Limited.
Business Objects WebIntelligence 2.7.4
Business Objects WebIntelligence 2.7.3
Business Objects WebIntelligence 2.7.2
Business Objects WebIntelligence 2.7.1
Business Objects WebIntelligence 2.7
Business Objects InfoView 5.1.8
Business Objects InfoView 5.1.7
Business Objects InfoView 5.1.6
Business Objects InfoView 5.1.5
Business Objects InfoView 5.1.4
Reportedly Business Objects WebIntelligence is affected by a remote file name HTML injection vulnerability. This issue is due to a failure to sanitize file names prior to including them in dynamic web page content.
An attacker may leverage this issue to execute arbitrary HTML and script code in the browser of an unsuspecting user, facilitating theft of cookie based authentication credentials. Other attacks are also possible.
No exploit is required to leverage this issue.
The vendor has released patches dealing with this issue. Users are recommended to contact the vendor for patch and update availability.