Info

Disclosure

Feb 04, 2010

Discovery

Unknown

Dates

Exploit

Unknown

Solution

Unknown

Description

evalsmsi contains a flaw that allows a remote cross site scripting (XSS) attack. This flaw exists because the application does not validate the comments parameter upon submission to the assess.php script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

Classification

Location: Remote / Network Access
Attack Type: Input Manipulation
Impact: Loss of Integrity
Solution: Solution Unknown
Exploit: Exploit Public
Disclosure: Vendor Verified
OSVDB: Web Related

Solution

Upgrade to version 2.2.0 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Products

evalSMSI

2.1.03

References

CVE ID: 2010-0615 (see also: NVD)
Bugtraq ID: 38116
Secunia Advisory ID: 38478
ISS X-Force ID: 56154
Related OSVDB ID: 62177 62179 62180
Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2010-02/0056.html
Other Advisory URL: http://packetstormsecurity.org/1002-exploits/corelan-10-008-evalmsi.txt
http://www.corelan.be:8800/index.php/forum/security-advisories/corelan-10-008-evalmsi-2-1-03-multiple-vulnerabilities/

Credit

Unknown or Incomplete

Direct URL: http://osvdb.org/62178