Signature Detail
Short Name |
HTTP:STC:RSS-FEED-CODE-INJ |
|---|---|
Severity |
Medium |
Recommended |
No |
Recommended Action |
Drop |
Category |
HTTP |
Keywords |
Microsoft Windows Vista Feed Headlines Gadgets RSS Feed Cross Site Scripting |
Release Date |
2007/08/14 |
Update Number |
1213 |
Supported Platforms |
idp-4.0+, isg-3.1.134269+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+ |
HTTP: Microsoft Windows Vista Feed Headlines Gadgets RSS Feed Cross Site Scripting
This signature detect attempts to exploit a known vulnerability against Microsoft Windows Vista. The vulnerabilities are due to insufficient validation of user input before it is sent back to the user. A remote unauthenticated attacker may exploit these vulnerabilities to execute arbitrary script code in the context of the the current browser session.
Extended Description
Windows Vista is prone to a remote code-execution vulnerability because it fails to adequately sanitize user-supplied data. Attackers exploit this issue by coercing unsuspecting users to subscribe to a malicious RSS feed using the affected gadget. Attackers can leverage this issue to execute arbitrary code in the context of the currently logged-in user. Successful attacks may facilitate the remote compromise of affected computers.
Affected Products
- Avaya Customer Interaction Express (CIE) User Interface 1.0.2
- Microsoft Windows Vista Business
- Microsoft Windows Vista Enterprise
- Microsoft Windows Vista Home Basic
- Microsoft Windows Vista Home Premium
- Microsoft Windows Vista Ultimate
- Microsoft Windows Vista x64 Edition
References
- BugTraq: 25287
- CVE: CVE-2007-3033