Kerio MailServer < 6.6.2 (KSEC-2008-12-16-01) Multiple XSS

medium Nessus Network Monitor Plugin ID 4797

Synopsis

The remote mail server is affected by several cross-site scripting vulnerabilities.

Description

According to its banner, the remote host is running a version of Kerio MailServer prior to 6.6.2. Multiple files in such versions are reportedly affected by cross-site scripting vulnerabilities.

- The application fails to sanitize input to the 'folder' parameter of the 'mailCompose.php' script as well as the 'daytime' parameter of the 'calendarEdit.php' script before using it to generate dynamic HTML.

- Content passed to 'sent' parameter of the 'error413.php' script is not sanitized before being returned to the user.

Successful exploitation of these issues could lead to execution of arbitrary HTML and script code in a user's browser within the security context of the affected site.

Solution

Upgrade to versaion 6.6.2 or higher.

See Also

http://www.kerio.com/security_advisory.html#0812

http://www.securityfocus.com/bid/32863

Plugin Details

Severity: Medium

ID: 4797

Family: SMTP Servers

Published: 12/22/2008

Updated: 3/6/2019

Nessus ID: 35258

Risk Information

VPR

Risk Factor: Low

Score: 3.0

CVSS v2

Risk Factor: Medium

Base Score: 5.8

Temporal Score: 4.8

Vector: CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:N

CVSS v3

Risk Factor: Medium

Base Score: 4.8

Temporal Score: 4.5

Vector: CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N

Temporal Vector: CVSS:3.0/E:F/RL:O/RC:C

Vulnerability Information

CPE: cpe:/a:kerio:kerio_mailserver

Reference Information

CVE: CVE-2008-5760, CVE-2008-5769

BID: 32863