Pubcookie Login Server index.cgi XSS

This script is Copyright (C) 2006-2014 Tenable Network Security, Inc.


Synopsis :

The remote web server contains a CGI script that is affected by
several non-persistent, cross-site scripting flaws.

Description :

The remote host is running Pubcookie, an open source package for
intra-institutional, single-sign-on, end-user web authentication.

The version of the Login Server component of Pubcookie installed on
the remote host fails to sanitize user-supplied input to various
parameters of the 'index.cgi' script before using it to generate
dynamic HTML. An attacker may be able to exploit these issues to
cause arbitrary HTML and script code to be executed by a user's
browser in the context of the affected website, which could be used
to steal authentication credentials or mis-represent the affected
application.

See also :

http://pubcookie.org/news/20060306-login-secadv.html

Solution :

Upgrade to Pubcookie version 3.2.1b / 3.3.0a or later.

Risk factor :

Medium / CVSS Base Score : 4.3
(CVSS2#AV:N/AC:M/Au:N/C:N/I:P/A:N)
CVSS Temporal Score : 3.6
(CVSS2#E:F/RL:OF/RC:C)
Public Exploit Available : true

Family: CGI abuses : XSS

Nessus Plugin ID: 21158 ()

Bugtraq ID: 17221

CVE ID: CVE-2006-1392