lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
Hash Suite for Android: free password hash cracker in your pocket
[<prev] [next>] [day] [month] [year] [list]
Date: Mon, 10 Dec 2012 16:44:04 GMT
Subject: Snare for Linux Cross-Site Scripting via Log Injection

Snare for Linux Cross-Site Scripting via Log Injection

Snare for Linux provides a 'C2' or 'CAPP' style audit 
subsystem for the Linux operating system. It can be
used as a standalone auditing tool for Linux, or can 
send data to the Snare Server for analysis and storage. 

A cross-site scripting vulnerability has been discovered 
in the web interface for Snare for Linux.  As part of 
Snare's intended functionality, one feature it provides
is the logging of shell commands issued by a given user 
which are then available for viewing through the web 
interface.  Due to the fact that this data was not validated
before being sent to the browser in versions prior to 1.7.0,
it is possible to inject JavaScript into the web console.

All versions of Snare for Linux prior to 1.7.0 are vulnerable.

Users should upgrade to version 1.7.0 of Snare for Linux.

V. Credit
This vulnerability was discovered by Andrew Brooks.

VI. References

VII. Timeline
7/11/11 - Vendor notification
8/09/11 - Fixed and closed

Powered by blists - more mailing lists