邪恶八进制信息安全团队技术讨论组 » 重要安全公告{ Security Advisory Bulletin } » 漏洞分析[ Vulnerability Analyse ] » [转载]SqWebMail特定条件注释脚本插入漏洞 [查看完整版本]

EvilOctal 2005-9-9 22:54

[转载]SqWebMail特定条件注释脚本插入漏洞

信息来源：secunia.com

Summary
Secunia Research has discovered a vulnerability in SqWebMail, which can be exploited by malicious people to conduct script insertion attacks.

Credit:
The information has been provided by Secunia Research.
The original article can be found at: [url]http://secunia.com/secunia_research/2005-44/advisory/[/url]

Details
Vulnerable Systems:
* SqWebMail version 5.0.4

The vulnerability is caused due to SqWebMail allowing usage of e.g. the "<script>" tag within an HTML comment. This, combined with "Conditional Comments" in Internet Explorer, can be exploited to execute arbitrary script code in a user&#39;s browser session in context of a vulnerable site when a malicious email is viewed.

Successful exploitation requires that the user is using Internet Explorer.

Example in an HTML email:
<!--[if IE]>
<script>alert("Vulnerable!");</script>
<![endif]-->

Solution:
The vendor has issued an updated version of SqWebMail, which fixes this vulnerability: [url]http://www.courier-mta.org/?download.php.[/url]

Disclosure Timeline:
05/09/2005 - Initial vendor notification
05/09/2005 - Vendor confirms vulnerability and releases a fix
06/09/2005 - Public disclosure

查看完整版本: [转载]SqWebMail特定条件注释脚本插入漏洞

© 1999-2008 EvilOctal Security Team