Sporks-R-Us: Bastard Hybrid Utensil of D00M!
Front Page · Everything · News · Op/Ed · Ask A Spork · Interviews · Religion · Reviews · MLP · AK5CG · Strange · Cats · Nonsense · Fiction · Dead at 54 · The Pits of Hell · Meta · Vlad's Store · Diaries · Site News
Follow up on Post Nuke vulnerability

WTF?
By Vladinator
from the A better discription department, Section Attack of the K5 Cock Goblins
Posted on Wed Oct 02, 2002 at 12:10:41 PM GMT
Here is a MUCH better description of the problem by the developer I quoted from the mailing list, Brian Erdelyi. Brian can be reached at brian_erdelyi@yahoo.com

dividing image

Number   
Title   News Module: Cross Site Scripting Vulnerability
Author   Brian Erdelyi
Discovered By   Mike Grimes

Original Release Date   1-Oct-02
Last Modified Date    1-Oct-02

Systems Affected   "PostNuke .72, earlier versions are likely affected.

PostNuke is based on PHPNuke.  PHPNuke and variations may also be vulnerable."

Overview   "A cross site scripting vulnerability exists in the PostNuke news module.  Websites that use the PostNuke content management system (or software based on the same source code) may be vulnerable.

This could allow a remote attacker to hijack a victim's session under certain circumstances."

Details    "For this exploit to be successful, the following must occur:
1.  The victim clicks a malicious URL (this could be launched automatically by visiting a malicious website or opening a malicious HTML formatted email); and
2.  The victim's session is still active.

HTML, PHP, and other files stored on the webserver are not modified.

For a generic description of cross site scripting please see CERT Advisory CA-2000-02 (http://www.cert.org/advisories/CA-2000-02.html).

Impact    Information displayed to users may include malicious HTML tags or scripts that will be executed in the victim's web browser with privileges of the local user.  This may allow a remote attacker to view, modify, or delete information stored on the victim's computer, including cookies.

Solution    "Users:
1.  Log out of PostNuke sites when finished to close session.  Closing the web browser may not close the session with the application.  If you experience unexpected errors, you should consider logging out of the application and closing all web browsers.  Logging onto the application again will establish a new session ID.

PostNuke Administrators:
1.  Configure PostNuke to timeout session ID's.
2.  Notify users of potential risks if they do not log out of your site."
< OS Review: Mandrake 9.0 | test of section >
Menu
· create account · faq · search · mission · topics

Login
Make a new account
Username:
Password:

Related Links
· brian_erde lyi@yahoo.com
· More on WTF?
· Also by Vladinator

Display: Sort:
Follow up on Post Nuke vulnerability | 1 comment (1 topical, 0 hidden)
Solution (none / 0) (#1)
by PowerSpork 5000 on Wed Oct 02, 2002 at 08:09:57 PM GMT

Don't use PostNuke!

Geez.  How much simpler can it get than that?

Sporks R Us
The Swiss Army Chainsaw of Flatware Management!



Follow up on Post Nuke vulnerability | 1 comment (1 topical, 0 hidden)
Display: Sort:

SRU - Embrace the Spork! SourceForge Logo Powered by Scoop
Inspiration
If life is a stage, I want some better lighting.

Please buy the stuff we sell on ebay.
All trademarks and copyrights on this page are owned by their respective companies. Comments are owned by the Poster. The Rest © 2003-2006 The Management

create account | faq | search