Info

Disclosure

Jun 07, 2005

Discovery

Unknown

Dates

Exploit

Jun 07, 2005

Solution

Unknown

Description

Cerberus Helpdesk contains a flaw that allows a remote cross site scripting attack. The flaw exists because the application does not validate the 'sid' and 'id' variables upon submission to the 'clients.php' script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

Classification

Location: Remote/Network Access Required
Attack Type: Input Manipulation
Impact: Loss of Integrity
Exploit: Exploit Available
Disclosure: OSVDB Verified
OSVDB: Web Related

Solution

Contact the vendor for an appropriate upgrade. It is also possible to correct the flaw by implementing the following workaround: in php.ini, set 'display_errors' to 'Off'.

Products

WebGroup Media LLC

Cerberus Helpdesk

0.97.3

References

Security Tracker: 1014128
Secunia Advisory ID: 15641
Related OSVDB ID: 17228 17229 17230 17231
CVE ID: 2005-1962 (see also: NVD)
Other Advisory URL: http://echo.or.id/adv/adv15-theday-2005.txt
Vendor Specific Solution URL: http://forum.cerberusweb.com/showthread.php?threadid=5162&goto=newpost
Vendor URL: http://www.cerberusweb.com/

Credit

Dedi Dwianto - the_dayecho.or.id -

Direct URL: http://osvdb.org/36218