SecurityTracker.com
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 


Category:   Application (Web Server/CGI)  >   Tarantella Vendors:   Tarantella, Inc.
Tarantella Enterprise Input Validation Flaws in 'ttaarchives.cgi' and 'ttacab.cgi' Permit Cross-Site Scripting Attacks
SecurityTracker Alert ID:  1009501
SecurityTracker URL:  http://securitytracker.com/id/1009501
CVE Reference:   GENERIC-MAP-NOMATCH   (Links to External Site)
Date:  Mar 20 2004
Impact:   Disclosure of authentication information, Disclosure of user information, Execution of arbitrary code via network, Modification of user information
Fix Available:  Yes  Vendor Confirmed:  Yes  
Version(s): 3.40, 3.3x, and 3.2x
Description:   A vulnerability was reported in Tarantella Enterprise. A remote user can conduct cross-site scripting attacks.

Tarantella reported that the ttaarchives.cgi and ttacab.cgi CGI utilities do not properly validate user-supplied query parameters. A remote user can create a specially crafted query that, when loaded by a target user, will cause arbitrary scripting code to be executed by the target user's browser. The code will originate from the site running the Tarantella Enterprise software and will run in the security context of that site. As a result, the code will be able to access the target user's cookies (including authentication cookies), if any, associated with the site, access data recently submitted by the target user via web form to the site, or take actions on the site acting as the target user.

The vendor credits Sanjay Shah of Citigroup with reporting this flaw.

Impact:   A remote user can access the target user's cookies (including authentication cookies), if any, associated with the site running the Tarantella Enterprise software, access data recently submitted by the target user via web form to the site, or take actions on the site acting as the target user.
Solution:   The vendor has issued replacement CGI utilities, available at the Tarantella Support site:

http://www.tarantella.com/support/updates/

Vendor URL:  www.tarantella.com/security/bulletin-09.html (Links to External Site)
Cause:   Input validation error
Underlying OS:  Linux (Conectiva), Linux (Red Hat Enterprise), Linux (Red Hat Linux), Linux (SuSE), Linux (Turbo Linux), UNIX (AIX), UNIX (HP/UX), UNIX (Solaris - SunOS)

Message History:   None.


 Source Message Contents

Subject:  http://www.tarantella.com/security/bulletin-09.html


http://www.tarantella.com/security/bulletin-09.html

 > Tarantella Security Bulletin #09
 > Cross-site scripting vulnerability in the Tarantella Enterprise 3 CGI utilities.
 > Originally posted: Mar 16, 2004
 > Last updated: Mar 16, 2004

Tarantella reported that the ttaarchives.cgi and ttacab.cgi utilities do not properly 
validate user-supplied query parameters.


The following versions are reportedly affected:

Tarantella Enterprise 3, version 3.40 on all operating systems.
Tarantella Enterprise 3, version 3.3x on all operating systems.
Tarantella Enterprise 3, version 3.2x on all operating systems.


The vendor credits Sanjay Shah of Citigroup.

The vendor has issued replacement CGI utilities, available at the Tarantella Support site:

http://www.tarantella.com/support/updates/



 
 


Go to the Top of This SecurityTracker Archive Page





Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2020, SecurityGlobal.net LLC