* LAN Messenger LAN Messenger 1.2.28
An attacker may leverage this issue to execute arbitrary script code in the context of the affected application.
LAN Messenger is vulnerable to cross-site scripting, caused by improper validation of user-supplied input by the Messagebox Display and Input modules. A remote attacker could exploit this vulnerability using the username field to inject malicious script into a Web page which would be executed in a victim's Web browser within the security context of the hosting Web site, once the page is viewed. An attacker could use this vulnerability to steal the victim's cookie-based authentication credentials.
A persistent software vulnerability is detected in in LAN Messenger v1.2.28. The bug is located in the profile display
& nickname validation of the software. The vulnerability allows an attacker (remote) to implement own malicious script codes as
profile. The code is getting executed when the attacker writes the victim a message. The vulnerable nickname input is getting
executed as output of the messagebox when processing to write a message. Successful exploitation can lead in persistent hijacking,
external malicious redirects, persistent script code execution to compromise the connected network client system.
[+] Username as seen by Contacts - Messagebox Display & Input
Proof of Concept:
The persistent profile vulnerability can be exploited by remote attackers with low required inter action.
For demonstration or reproduce ...
1. Open LAN Messenger v1.2.28 click on the top menu > Tools
2. Switch to > Preferences > Account
3. Include to the Username as seen by Contacts your own persistent script code with char obfuscation trick
4. write the target system your message to exploit persistent via profile display nickname
"><iFrAmE sRc=A oNlOaD=aLeRt("VL") <